Debugging TSIG signed nsupdate problems
Erik Edwards
erik at emedwards.info
Fri May 24 17:25:40 UTC 2024
algorithm hmac-sha256;
named-checkconf -p shows the key with the matching name, algo, and secret.
When I mis-configure, change, or typo the secret it returns "BAD SECRET"
The error I'm seeing is "REFUSED" on a config that worked until the upgrade.
It worked on F36-F39, upgrades were seamless.
Really wondering how to get debug level logs on this module.
On 5/24/24 11:31 AM, John Thurston wrote:
> named-conf -px
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature.asc
Type: application/pgp-signature
Size: 236 bytes
Desc: OpenPGP digital signature
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20240524/f0a05728/attachment-0001.sig>
More information about the bind-users
mailing list