On 20.5.2014 13:56, Jakob Schlyter wrote:
On 20 maj 2014, at 12:39, Petr Spacek wrote:
Now I have looked into /var/opendnssec/signconf/example.xml and it seems that I
will be able to generate K*.private key except timestamps:
Created: 20140429162528
Publish: 20140429162528
Activate: 2014042
On 20 maj 2014, at 12:39, Petr Spacek wrote:
> Now I have looked into /var/opendnssec/signconf/example.xml and it seems that
> I will be able to generate K*.private key except timestamps:
>
> Created: 20140429162528
> Publish: 20140429162528
> Activate: 20140429162528
> ...
You do not need th
On tis, 2014-05-20 at 12:50 +0200, Jerry Lundström wrote:
> On tis, 2014-05-20 at 12:39 +0200, Petr Spacek wrote:
> > Now I have looked into /var/opendnssec/signconf/example.xml and it seems
> > that
> > I will be able to generate K*.private key except timestamps:
> >
> > Created: 20140429162528
On tis, 2014-05-20 at 12:39 +0200, Petr Spacek wrote:
> Now I have looked into /var/opendnssec/signconf/example.xml and it seems that
> I will be able to generate K*.private key except timestamps:
>
> Created: 20140429162528
> Publish: 20140429162528
> Activate: 20140429162528
Why do you need th
On 19.5.2014 13:21, Jerry Lundström wrote:
On mån, 2014-05-19 at 13:09 +0200, Petr Spacek wrote:
Private key will be distributed by underlying PKCS#11 implementation but we
need to receive key ID and all the metadata necessary for DNS
signing/orchestration.
There are a few different keys and s
On mån, 2014-05-19 at 13:09 +0200, Petr Spacek wrote:
> Private key will be distributed by underlying PKCS#11 implementation but we
> need to receive key ID and all the metadata necessary for DNS
> signing/orchestration.
>
> > There are a few different keys and states, there are HSM keys (raw ke
On 19.5.2014 10:26, Jerry Lundström wrote:
Hi Petr,
On fre, 2014-05-16 at 18:01 +0200, Petr Spacek wrote:
I'm looking into OpenDNSSEC v 1.4.5 configuration files and I can't see any
hooks for user scripts in Enforcer's configuration.
There are two hooks/commands that you can configure for Ope
Hi Petr,
On fre, 2014-05-16 at 18:01 +0200, Petr Spacek wrote:
> I'm looking into OpenDNSSEC v 1.4.5 configuration files and I can't see any
> hooks for user scripts in Enforcer's configuration.
There are two hooks/commands that you can configure for OpenDNSSEC:
1. Configure the if you want to
