logo       
<prev   next>

Re: Zone transfer: msg#00562

Subject: Re: Zone transfer 
On Wed, 31 Jul 2002, Gerhard van Niekerk wrote:

>  I got some help from Måns Nilsson. The problem is that if i try rndc
>  reload i get rndc: connect failed: connection refused now i got an doc
>  from redhat
>  
> http://www.redhat.com/docs/manuals/linux/RHL-7.2-Manual/ref-guide/s1-bind-rndc.html#BIND-RNDC-NAMED-CONTROLS
>
>  they say do this dnssec-keygen -a hmac-md5 -b 256 -n HOST Mimer to get
>  an key file when i do it i get Kmimer.+157+51178 where do i get the key
>  or is Kmimer.+157+51178 the key name and where do i get it ?

Use a stronger key than 256 bits - 1024 or 2048 for example.

That command should generate two files:


Kmimer.+157+51178.key
Kmimer.+157+51178.private


Either should contain the same key (view it with 'cat' or your favourite
editor):

# cat Kmimer.+157+02543.key
Mimer. IN KEY 512 3 157 myshK32yPx7UxwdTMUsO91o3jEBHOoarVSH/0pEy1Eg=

# cat Kmimer.+157+02543.private
Private-key-format: v1.2
Algorithm: 157 (HMAC_MD5)
Key: myshK32yPx7UxwdTMUsO91o3jEBHOoarVSH/0pEy1Eg=

Now you can use that key in /etc/rndc.conf and /etc/named.conf, either
directly in the file itself, or indirectly by saving the key to a separate
file, and calling it from rndc.conf/named.conf with eg:

include "/etc/rndc.key"

or whatever you wish to call the file.


-- 
Juha Saarinen
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Active directory update bind, Blaine Elzey
Next by Date:  Secondary sending notifies to itself?, J.D. Bronson
Previous by Thread:  Re: Zone transfer, Gerhard van Niekerk
Next by Thread:  Re: Zone transfer, Gerhard van Niekerk
Indexes:  [Date] [Thread] [Top] [All Lists]

Google Custom Search
Recently Viewed:
linux.arklinux....    user-groups.lin...    kde.usability/2...    ietf.ipp/2002-0...    mail.spam.spamc...    os.netbsd.devel...    audio.cd-record...    text.unicode.de...    php.documentati...    games.fps.halfl...    window-managers...    suse.oracle.gen...    bug-tracking.gn...    video.dvdrip.us...    xfree86.cvs/200...    java.netbeans.m...    network.argus/2...    culture.sf.kill...    debian.ports.al...    freebsd.questio...    qplus.devel/200...    handhelds.palm....   
Home | blog view | USPTO Patent Archive | advertise | OSDir is an inevitable website. super tiny logo

Free Magazines

Cisco News
Receive a free quarterly e-newsletter with exclusive articles on how Cisco IT uses its own products and solutions to enable the business.
subscribe

Systems Management News, the newspaper for IT systems administration and data center managers! Each issue of Systems Management News is chock-full of news and analysis to help you understand what's happening in your field.
subscribe

The Enterprise Newsweekly eWeek is the essential technology information source for builders of e-business.
subscribe

Oracle Magazine Oracle Magazine contains technology strategy articles, sample code, tips, Oracle and partner news, how to articles for developers and DBAs, and more. Oracle (NASDAQ: ORCL) is the world's largest enterprise software company.
subscribe

Total Telecom Total Telecom is "The Economist of the communications industry".
subscribe