On 08/16/2012 03:49 AM, Tony Finch wrote:
> Tony Finch wrote:
>
>> 15-Aug-2012 19:56:31.969 general: error: zone fanf2.ucam.org/IN:
>> update_sigs:add_sigs -> sign failure
>
> This turned out to be because /dev/random inside my chroot was set up
> incorrectly. FreeBSD has a somewhat unusual way
Tony Finch wrote:
> 15-Aug-2012 19:56:31.969 general: error: zone fanf2.ucam.org/IN:
> update_sigs:add_sigs -> sign failure
This turned out to be because /dev/random inside my chroot was set up
incorrectly. FreeBSD has a somewhat unusual way of dealing with device
nodes.
Tony.
--
f.anthony.n.
> Is automatic signing with ECDSA supposed to work yet?
If you linked with an openssl that supports it (which you must have,
or dnssec-signzone wouldn't have worked) then yes, automatic signing
should work too. (If you don't mind, can you send this to
bind9-b...@isc.org? Or I could forward it f
Is automatic signing with ECDSA supposed to work yet? I ran:
$ dnssec-keygen -a ECDSAP256SHA256 -f KSK fanf2.ucam.org
Generating key pair.
Kfanf2.ucam.org.+013+03356
$ dnssec-keygen -a ECDSAP256SHA256 fanf2.ucam.org
Generating key pair.
Kfanf2.ucam.org.+013+63927
$ chmod g+r K*
$ rndc loadkeys fa
4 matches
Mail list logo
