named is looking for K files that match the DNSKEY records in the zone and
is not finding them. Removing K files too early or having them in the
wrong place will produce these errors.
You can work out which DNSKEY record matches the number with dig +rrcomments
or dig +multiline.
[beetle:~/git/bi
I've had bind 9.9.4 doing dnssec for a few years now. All the zones are
configured with:
key-directory "/var/named/keys";
auto-dnssec maintain;
inline-signing yes;
I just added a bunch of zones, and 8 of them are failing with:
dns_dnssec_findzonekeys2: error reading priv
2 matches
Mail list logo
