[Opendnssec-develop] Authoritiative: file vs database
Jerry Lundström
jerry at opendnssec.org
Mon Oct 1 15:04:27 UTC 2012
On Sep 29, 2012, at 15:25 , Sara Dickinson wrote:
> Sorry - should have been clearer. This solution does solve the current issue with conflicts between the signer and enforcer use of a single zone list file. However Jakob and I had a conversation about this from an architectural point of view in terms of the interface between the enforcer and signer, and possibly replacing the/var/opendnssec/*. xml files with something else in future. Also, we initially thought this solution could simplify the HA set of of a secondary signer since the user would only have to copy the /var/opendnssec dir across but this is not the case.
Then it should actually be the other way around, we should put all files in /etc. If you look at the FHS definition /etc is clearly the most suitable place for these configure files then /var is.
/Jerry
--
Jerry Lundström - OpenDNSSEC Developer
http://www.opendnssec.org/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 495 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.opendnssec.org/pipermail/opendnssec-develop/attachments/20121001/439a9d3f/attachment.bin>
More information about the Opendnssec-develop
mailing list