[Opendnssec-develop] Reloading zonelists into the signer engine
sion at nominet.org.uk
Tue Jul 27 14:35:48 UTC 2010
> I think it would be more logical to invoke it after ods-signer update,
> since the zone fetcher is controlled by the signer.
Is the use case adding new zones?
If it is then after adding the zone with ksmutil you _need_ the enforcer to
run to allocate keys to the new zone.
Assuming that the enforcer has no problems doing this it will ask the signer
to look at the new zone, after creating a new signconf.
If the use case is removing zones then ksmutil already calls the signer to say
that the zonelist has changed.
Or have I misunderstood the request?
More information about the Opendnssec-develop