[Opendnssec-user] time issues

Fredrik Pettai Sun, 01 Jan 2012 12:05:24 -0800

Hi,

I noticed time(ing) issues with OpenDNSSEC. In the log I get entries like this:


Jan  1 19:54:10 hidden-master ods-auditor[19565]: RRSet (eduid.se, SOA) failed 
verification : Signature record not in validity period, tag = 16246
Jan  1 19:54:10 hidden-master ods-auditor[19565]: Inception error for eduid.se, 
SOA : Signature inception is 1356976449, time now is 1325444050, inception 
offset is 3600, difference = -31532399

The generated SOA serial also looks fishy:

from eduid.se.inbound:
@               IN      SOA     hidden-master.sunet.se. hostmaster.sunet.se. (
                                2011121300      ; !!SERIAL!!
                                28800       
                                7200         
                                604800    
                                60             

from eduid.se.finalized:
eduid.se.       86400   IN      SOA     hidden-master.sunet.se. hostmaster.sunet
.se. 2026202100 28800 7200 604800 300 

And in the signed dir, I find an older copy, with this:
eduid.se.       86400   IN      SOA     hidden-master.sunet.se. hostmaster.sunet
.se. 2011123100 28800 7200 604800 300

Any hints where I should continue to do debugging?

Re,
/P_______________________________________________
Opendnssec-user mailing list
[email protected]
https://lists.opendnssec.org/mailman/listinfo/opendnssec-user

[Opendnssec-user] time issues

Reply via email to