[Opendnssec-user] running the signer without signerd

Matthijs Mekking matthijs at NLnetLabs.nl
Thu Jun 10 14:53:25 CEST 2010


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

The replacement will be a c-based signer engine daemon, removing the
python and python-4suite-xml dependencies from OpenDNSSEC.

Best regards,

Matthijs


On 06/10/2010 02:19 PM, Miek Gieben wrote:
> [ Quoting Matthijs Mekking in "Re: [Opendnssec-user] running the s"... ]
>> Hi Miek,
> 
> Hi Mathijs! :-)
> 
>> No. The ods-signer is a client tool that can be used to control the
>> ods-signerd, the signer daemon.
>>
>> It is possible to manually call the signer tools that are stored in the
>> opendnssec/libexec/opendnssec directory. If you grep the syslog on "Run
>> command", you can see what individual calls you have to make, in order
>> to sign the zonefile manually.
>>
>> Best regards,
>>
>> Matthijs
>>
>> PS: These signer tools will become deprecated from version 1.2 and up
> 
> ah! and what will be the replacement? 
> 
> Right now I want to leave the key management to OpenDNSSEC and do the
> signing with the bind tools (dnssec-signzone).
> 
> grtz Miek
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQEcBAEBAgAGBQJMEOBEAAoJEA8yVCPsQCW57OAH/igZvRn0ajrzYszfujdmpdnv
JpO3tbxcFKb1yV0dnl6mtK82YfjTAYnd3jOpc/tkB+JuKXUbLhZfCLKaNEqWmQnH
HQxtZlCMF8wQt2B/yZVaFzPJEhv5vMxVm2vDWjKGpbxGj9TBASB7jMZAdw+XndFK
FgSRCLvCUnQoZonz0pg3jyOfjCKHOKV6WoTb469Y3mU1S4xezvqMgaFhsGBQ52UD
zRLgibBGLfk7FRvK4Q5gRMud6tMiTkRLbz+bgVmjprzx24SVAQAWxNieSZD+JEop
MaMIBqeA6AoOP3P5QqYzg0tUY4poIqm3m9Ohnj/YcD/sVGTtOrCjiFWF7kUe3Ao=
=dGhj
-----END PGP SIGNATURE-----



More information about the Opendnssec-user mailing list