[Opendnssec-develop] Re: [OpenDNSSEC] #71: Auditor blocks domain signing entirely

OpenDNSSEC owner-dnssec-trac at kirei.se
Wed Jan 6 11:49:23 CET 2010


#71: Auditor blocks domain signing entirely
---------------------------------+------------------------------------------
Reporter:  rick@…                |       Owner:  matthijs        
    Type:  defect                |      Status:  assigned        
Priority:  critical              |   Component:  Signer          
 Version:                        |    Keywords:  auditor deadlock
---------------------------------+------------------------------------------
Changes (by alex):

  * owner:  alex => matthijs
  * status:  new => assigned
  * component:  Auditor => Signer


Comment:

 The Signer starts the auditor each time a zone is to be audited (after it
 has been signed). The signer either publishes the file or not, depending
 on the result of the auditor. The auditor is unable to "block" the
 publishing of other domains.

 I'm not sure what the signer logic is when one zone has failed an audit. I
 would have presumed that it would carry on and sign the other zones (and I
 think I have seen this happen on my machine).


 Alex.

-- 
Ticket URL: <http://trac.opendnssec.org/ticket/71#comment:1>
OpenDNSSEC <http://www.opendnssec.org/>
OpenDNSSEC


More information about the Opendnssec-develop mailing list