AW: DNSSEC and nsupdate

: DNSSEC and nsupdate Setting the permissions of a *private* key to 0644 sounds like a bad idea. Maybe you mean 0640? On Fri, 2 Mar 2018 23:28:28 + "Prof. Dr. Michael Schefczyk" <mich...@schefczyk.net> wrote: > Dear Mark, > > I did get the issue resolved while sett

AW: DNSSEC and nsupdate

key-directory "/var/lib/bind"; auto-dnssec maintain; }; Regards, Michael Schefczyk -Ursprüngliche Nachricht----- Von: Mark Andrews [mailto:ma...@isc.org] Gesendet: Montag, 26. Februar 2018 01:57 An: Prof. Dr. Michael Schefczyk <mich...@schefczyk.net> Cc: b

AW: DNSSEC and nsupdate

convention of K[fqdn]+number+keyid.key or .private anymore? Regards, Michael Technische Universität Dresden Fakultät Wirtschaftswissenschaften Lehrstuhl für Entrepreneurship und Innovation Prof. Dr. Michael Schefczyk D-01062 Dresden Fon: +49

DNSSEC and nsupdate

Dear All, For a long time already, I am using a bind master DNS server based on debian set up via webmin. It is currently Debian Stretch with bind 9.10. I am using DNSSEC. The webmin setup leads to all keys being stored in /var/lib/bind. The naming scheme is K[fqdn]+number+keyid.key or