> Clearly there's a bad assumption on my part somewhere in here.
Yes, if you create keys manually then you have to add them manually to
OpenDNSSEC before you start OpenDNSSEC. If you have not added them to
the Enforcer, then it will create keys by itself. My recommendation is
to not generate keys
ODS-1.4.0-0.a2 + AEP Keyper
wiki.opendnssec.org states:
"The ods-hsmutil utility is designed to interact directly with your HSM
and can be used to manually list, create or delete keys. It can also be
used to perform a set of basics HSM tests."
--
I've created 5 KSK's and 31 ZSK's that are si
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi Javier,
On 07/11/2012 02:53 PM, Javier Jiménez Huedo wrote:
> Hello,
>
> I have some doubts about how OpenDNSSEC sign the zones.
>
> I configured the file "kasp.xml" with the following parameters:
>
> PT5H
>
> P2D
>
>
> I think this will caus
Hello,
I have some doubts about how OpenDNSSEC sign the zones.
I configured the file "kasp.xml" with the following parameters:
PT5H
P2D
I think this will cause the daemon "signer" to be executed every 5 hours.
My questions are:
If I modify the zone file "db_u
On 11-07-12 12:57, Ondřej Surý wrote:
On Wed, Jul 11, 2012 at 12:55 PM, Casper Gielen wrote:
On 11-07-12 12:20, Ondřej Surý wrote:
botan1.10 1.10.2 broke binary compatibilty
install botan1.10 1.10.3 from unstable for time being.
Thanks for the info. The 1.10.3 package is not yet in Debian
On Wed, Jul 11, 2012 at 12:55 PM, Casper Gielen wrote:
> On 11-07-12 12:20, Ondřej Surý wrote:
>>
>> botan1.10 1.10.2 broke binary compatibilty
>>
>> install botan1.10 1.10.3 from unstable for time being.
>>
>
> Thanks for the info. The 1.10.3 package is not yet in Debian. I'll wait
> until it bec
On 11-07-12 12:20, Ondřej Surý wrote:
botan1.10 1.10.2 broke binary compatibilty
install botan1.10 1.10.3 from unstable for time being.
Thanks for the info. The 1.10.3 package is not yet in Debian. I'll wait
until it becomes available.
--
Casper Gielen | LIS UNIX
PGP fingerprint = 16BD 2C
botan1.10 1.10.2 broke binary compatibilty
install botan1.10 1.10.3 from unstable for time being.
On Wed, Jul 11, 2012 at 12:01 PM, Casper Gielen wrote:
> Hello,
> I'm experiencing a segfaults ods-enforcerd in my test environment.
>
> syslog:
> Jul 11 11:31:58 metagross kernel: [1050508.832383]
Hello,
I'm experiencing a segfaults ods-enforcerd in my test environment.
syslog:
Jul 11 11:31:58 metagross kernel: [1050508.832383] ods-enforcerd[12574]:
segfault at 8 ip 7561f8ad sp 7fffe890 error 6 in
libbotan-1.10.so.0.2[754b+2d3000]
strace:# strace ->
open("/var/l
