[Opendnssec-develop] Authoritiative: file vs database

Jerry Lundström jerry at opendnssec.org
Mon Oct 1 15:04:27 UTC 2012

On Sep 29, 2012, at 15:25 , Sara Dickinson wrote:
> Sorry - should have been clearer. This solution does solve the current issue with conflicts between the signer and enforcer use of a single zone list file. However Jakob and I had a conversation about this from an architectural point of view in terms of the interface between the enforcer and signer, and possibly replacing the/var/opendnssec/*. xml files with something else in future. Also, we initially thought this solution could simplify the HA set of of a secondary signer since the user would only have to copy the /var/opendnssec dir across but this is not the case. 

Then it should actually be the other way around, we should put all files in /etc. If you look at the FHS definition /etc is clearly the most suitable place for these configure files then /var is.


Jerry Lundström - OpenDNSSEC Developer

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 495 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.opendnssec.org/pipermail/opendnssec-develop/attachments/20121001/439a9d3f/attachment.bin>

More information about the Opendnssec-develop mailing list