[Opendnssec-user] RE: Build problem with Beta 2 version of OpenDNSSEC

Sitowitz, Paul PSitowitz at verisign.com
Fri Oct 16 14:12:41 UTC 2009 

Hi Matt,

It turned out that VeriSign corporate security blocked by email since
the gzip tarball contained a file named "example-zone.com" (unsigned
zone file). In order to get around this, I have renamed this file, which
resides in the "unsigned" folder, to
"example-zone.com.dropThisExtension". You will want to rename this back
to "example-zone.com" after extracting.

I received a response yesterday from Jakob Schlyter recommending that I
temporarily disable the Auditor by removing <Audit/> from the kasp.xml
and then update the policy using ods-ksmutil. I tried this
recommendation but now I am getting some new errors which are shown in
the log snippet below from /var/log/messages:


Oct 14 15:59:54 pcie ods-signerd: Zone example-zone.com locked
Oct 14 15:59:54 pcie ods-signerd: Error updating zone configuration for:
example-zone.com
Oct 14 15:59:54 pcie ods-signerd: [Errno 2] No such file or directory:
u'/usr/local/var/opendnssec/signconf/example-zone.com.xml'
Oct 14 15:59:54 pcie ods-signerd: Releasing lock on zone
example-zone.com
Oct 14 15:59:54 pcie ods-signerd: Zone test-zone.nl locked
Oct 14 15:59:54 pcie ods-signerd: Error updating zone configuration for:
test-zone.nl
Oct 14 15:59:54 pcie ods-signerd: [Errno 2] No such file or directory:
u'/usr/local/var/opendnssec/signconf/test-zone.nl.xml'
Oct 14 15:59:54 pcie ods-signerd: Releasing lock on zone test-zone.nl
Oct 14 15:59:54 pcie ods-signerd: Zone test-zone.nl locked
Oct 14 15:59:54 pcie ods-signerd: Error updating zone configuration for:
test-zone.nl
Oct 14 15:59:54 pcie ods-signerd: [Errno 2] No such file or directory:
u'/usr/local/var/opendnssec/signconf/test-zone.nl.xml'
Oct 14 15:59:54 pcie ods-signerd: Releasing lock on zone test-zone.nl
Oct 14 15:59:54 pcie ods-signerd: Zone example-zone.com locked
Oct 14 15:59:54 pcie ods-signerd: Error updating zone configuration for:
example-zone.com
Oct 14 15:59:54 pcie ods-signerd: [Errno 2] No such file or directory:
u'/usr/local/var/opendnssec/signconf/example-zone.com.xml'
Oct 14 15:59:54 pcie ods-signerd: Releasing lock on zone
example-zone.com
Oct 14 15:59:54 pcie ods-signerd: Zone example-zone.com locked
Oct 14 15:59:54 pcie ods-signerd: Error updating zone configuration for:
example-zone.com
Oct 14 15:59:54 pcie ods-signerd: [Errno 2] No such file or directory:
u'/usr/local/var/opendnssec/signconf/example-zone.com.xml'
Oct 14 15:59:54 pcie ods-signerd: Releasing lock on zone
example-zone.com
Oct 14 15:59:54 pcie ods-signerd: acquire cond
Oct 14 15:59:54 pcie ods-signerd: notify
Oct 14 15:59:54 pcie ods-signerd: release cond
Oct 14 15:59:54 pcie ods-signerd: Releasing lock on engine
Oct 14 15:59:54 pcie ods-signerd: Sending response: Zone list updated: 0
removed, 2 added, 0 updated Configurations updated: 0 config errors: 2

Thanks for looking into these for me!

Paul

-----Original Message-----
From: Matthijs Mekking [mailto:matthijs at nlnetlabs.nl] 
Sent: Thursday, October 15, 2009 4:12 AM
To: Sitowitz, Paul
Subject: Re: [Opendnssec-user] RE: Build problem with Beta 2 version of
OpenDNSSEC

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Paul,

Is it me, or did this message not contain a tarball. I would like to
investigate what is going on here...

Best regards,

Matthijs


Sitowitz, Paul wrote:
> Hi Matt,
> 
> I looked in the tmp folder and all of the files are there for
> test-zone.nl. I dug a little bit deeper and have attached a tgz
archive
> containing the following files:
> 
> 	signed/			     (empty since nothing signed
> successfully)
> 	unsigned/test-zone.nl
> 	unsigned/example-zone.com
> 	slot0.db			     (softHSM SQLite Db)
> 	kasp.db				
> 	signconf/test-zone.nl.xml
> 	signconf/example-zone.com.xml
> 	tmp/test-zone.nl.processed
> 	tmp/example-zone.com.signed
> 	tmp/example-zone.com.finalized
> 	tmp/test-zone.nl.signed
> 	tmp/example-zone.com.processed
> 	tmp/test-zone.nl.sorted
> 	tmp/test-zone.nl.finalized
> 	tmp/example-zone.com.nsecced
> 	tmp/test-zone.nl.nsecced
> 	tmp/example-zone.com.sorted
> 	my-messages.log		     (captured info from
> /var/log/messages)
> 	ods-auditor-errors.log	     (captured command line running
> auditor)
> 
...


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBAgAGBQJK1tlmAAoJEA8yVCPsQCW5MrUIALNYBRGu2+3DkxIt1dFtqFGT
v+GlyoGJNaLnIbCQ4L7Fn6guL3+y95ZrKKhG3ia6OMlCJAygarPQu8q3DdV64VjN
5mI/QNcetAuMUoRKQralIQp5NUd/xHFHE62VjQ0zYhknbTWfbF0XYfQLB525Qve4
Xvf1Wy3j5VzQeFrUYSJGF1CnBLGIzr94oN8kKGPEIUYYc8sxDoZQJc0AYSOflK4U
YhK0P6FHVOpaxt7mZdjeLjV5WNtVw43hYv5LDNV6tlWnCfyzWapgfUJBUAjyBJCx
FvjfSsbP+9y2vC3m/eM2GzYdzXt89Lu6zNgpjjGQ5gtXO2+WK7YBrS/C9XVm3lc=
=JwB1
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: issue-bundle.tgz
Type: application/x-compressed
Size: 23113 bytes
Desc: issue-bundle.tgz
URL: <http://lists.opendnssec.org/pipermail/opendnssec-user/attachments/20091016/cc13dc61/attachment.bin>

More information about the Opendnssec-user mailing list