[Opendnssec-develop] ksmutil

sion at nominet.org.uk sion at nominet.org.uk
Wed Jul 1 11:16:01 UTC 2009


I'm getting on with ksmutil now (the replacement for kaspimport and all of
its perl dependencies). My question is, what do people expect from it?

Currently the usage reports:

usage: ksmutil [-f config_dir] setup [path_to_kasp.xml]
        Import config_dir into a database (deletes current contents)
usage: ksmutil [-f config_dir] update [path_to_kasp.xml]
        Update database from config_dir
usage: ksmutil [-f config_dir] addzone zone [policy]
[path_to_signerconf.xml] [input] [output]
        Add a zone to the config_dir and database
usage: ksmutil [-f config_dir] delzone zone
        Delete a zone from the config_dir and database
usage: ksmutil [-f config_dir] rollzone zone [KSK|ZSK]
        Rollover a zone (may roll all zones on that policy)
usage: ksmutil [-f config_dir] rollpolicy policy [KSK|ZSK]
        Rollover all zones on a policy

(don't get excited, it doesn't do all of this yet)

So, what else do we need it to do? Some ideas:

"backup done"
"add repository"
"remove repository"
"add policy"
"remove policy"
"copy policy"

"edit policy" might need some sort of interactive command line interface,
the code for which is lurking around out of subversion.

"import keys" (keys created somewhere other than keygend)

"list [keys|policies|etc]"


Hmm, the more I think about it, the more 5 pivotal points doesn't seem
anywhere near enough... I'll stop thinking.

Sion




More information about the Opendnssec-develop mailing list