Am 26.01.2013 um 00:39 schrieb Michael W. Lucas:
Hi,
I'm trying to automate key rollover with BIND 9.9.2 (will soon upgrade
to new rev). I have a couple of elementary questions that seem to be
answered briefly in the documentation, but I suspect that my grasp of
key rollover is clouded by
On Sat, Jan 26, 2013 at 10:49:39AM +0100, Axel Rau wrote:
Am 26.01.2013 um 00:39 schrieb Michael W. Lucas:
It's your responsibility to create the keys and to renew the DS-RR with your
registrar.
Thank you for the straightforward answer.
I have written a python3 script which does all this
What are other people using to automate key rollovers with 9.9?
Michael: I automated mine by generating a set of 9 ZSKs and 2 KSKs for each
zone in advance, setting the timing metadata to achieve a 90-day prepublication
rollover cycle for the ZSKs and a 720-day rollover cycle for the KSKs.
- Original Message -
What are other people using to automate key rollovers with 9.9?
I use cron to generate new ZSKs at regular intervals (1st of every 3rd month,
with a 10 day window.) and do periodic resigns (every payday, and rely on the
tools to handle the rollover correctly.
Hi,
I'm trying to automate key rollover with BIND 9.9.2 (will soon upgrade
to new rev). I have a couple of elementary questions that seem to be
answered briefly in the documentation, but I suspect that my grasp of
key rollover is clouded by the last decade of blog posts about tools
and techniques
5 matches
Mail list logo
