Package: opendnssec-common Severity: normal Hi,
While testing FreeIPA DNSSEC integration I noticed that 2.0 broken some things, while some should be fixed in opendnssec itself. For one, ods-enforcerd needs /var/lib/opendnssec/enforcer to exist or it won't start: Apr 19 12:57:13 zesty systemd[1]: Started OpenDNSSEC Enforcer daemon. Apr 19 12:57:13 zesty ods-enforcerd: [file] chown() /var/lib/opendnssec/enforcer failed: No such file or directory Apr 19 12:57:13 zesty ods-enforcerd[30075]: setup failed: Change directory failed Apr 19 12:57:13 zesty ods-enforcerd[30075]: OpenDNSSEC key and signing policy enforcer version 2.0.3 Apr 19 12:57:13 zesty ods-enforcerd: [engine] chdir to /var/lib/opendnssec/enforcer failed: No such file or directory Apr 19 12:57:13 zesty systemd[1]: opendnssec-enforcer.service: Main process exited, code=exited, status=3/NOTIMPLEMENTED Also, /etc/opendnssec should be group writable. -- t
