[Opendnssec-develop] Reloading zonelists into the signer engine

Sion Lloyd sion at nominet.org.uk
Tue Jul 27 14:35:48 UTC 2010

> I think it would be more logical to invoke it after ods-signer update,
> since the zone fetcher is controlled by the signer.

Is the use case adding new zones?

If it is then after adding the zone with ksmutil you _need_ the enforcer to 
run to allocate keys to the new zone.

Assuming that the enforcer has no problems doing this it will ask the signer 
to look at the new zone, after creating a new signconf.

If the use case is removing zones then ksmutil already calls the signer to say 
that the zonelist has changed.

Or have I misunderstood the request?


More information about the Opendnssec-develop mailing list