automatic resigning in 9.6.x
R Dicaire
kritek at gmail.com
Sat Mar 7 17:26:26 UTC 2009
On Fri, Mar 6, 2009 at 11:46 PM, Evan Hunt <Evan_Hunt at isc.org> wrote:
> BIND 9 has, I believe, always had some support for automatic signing in the
> case of zone updates--at least as far back as 9.3, and I haven't looked at
> anything earlier. Basically, if you have a signed zone and you insert a
> new record, that record will automatically have an RRSIG generated for it.
Ok...so to implement this in bind 9.4.2-P2, I see the directive
sig-validity-interval in the ARM, if I set this to 1,
edit zone.db.signed, add a new entry, increment the serial, rndc
reload, what tells bind to resign the zone, and when?
More information about the bind-users
mailing list