8.2.4/NT-Bug If you have problems with DNSKEYGEN & NSUPDATE...
Dennis Spreen
mailing at spreendigital.de
Sun May 27 19:43:36 UTC 2001
8.2.4/NT:
If you create a key with dnskeygen:
dnskeygen -H 512 -z -n mykeyzone.com.
then you should rename the
Kmykeyzone.com.+157+12345.key
to
Kmykeyzone.com.+157+00000.key
as NSUPDATE wants to load the .key with a 0 signature
if invoked on the command line like this (assuming
the keys are in the same directory):
nsupdate -k .:mykeyzone.com.
Summary:
After creating your key with dnskeygen you should
rename the .key to a "0-signature key".
You should have two files named:
Kmykeyzone.com.+157+00000.key
Kmykeyzone.com.+157+12345.private
Regards
Dennis Spreen
More information about the bind-users
mailing list