dnssec-keygen
Saad Kadhi
bsdguy at docisland.org
Mon Sep 16 17:24:21 UTC 2002
On Mon, Sep 16, 2002 at 12:58:36PM -0400, Dean Carrera wrote:
>
> Has anyone seen these errors before... I used the following command to =
> generate the key.
>
> dnssec-keygen -a HMAC-MD5 -b 64 -n HOST atl-stg-web-01.intcx.com. I'm =
> not sure why I'm still getting these errors.
>
> Sep 16 16:55:12 atl-stg-web-01 named[11149]: [ID 866145 daemon.error] =
> /usr/local/etc/named.conf:17: configuring key =
> 'rtl-stg-web-01.intcx.com.': bad base64 encoding
> Sep 16 16:55:12 atl-stg-web-01 named[11149]: [ID 866145 daemon.crit] =
> loading configuration: bad base64 encoding
> Sep 16 16:55:12 atl-stg-web-01 named[11149]: [ID 866145 daemon.crit] =
> exiting (due to fatal error)
well the error is explicit. the tsig key is encoded in base64. you must have not
pasted it correctly to named.conf. do you have a statement like this in
named.conf:
key mykey {
algorithm hmac-md5;
secret "<mixed_letters_numerals_and_special_signs>=";
};
note the ending "=" sign.
--
Saad Kadhi
[pgp keyid: 35592A6D http://pgp.mit.edu]
[pgp fingerprint: BF7D D73E 1FCF 4B4F AF63 65EB 34F1 DBBF 3559 2A6D]
---
"Si ce que tu dis n'est ni beau, ni bon, ni vrai, alors tais-toi!"
- Socrate
More information about the bind-users
mailing list