priming and dnskey

T.Suzuki tss at reflection.co.jp
Fri Aug 4 08:04:44 UTC 2017 

This script is a criminal. I'm sorry.

/usr/local/etc/rc.d/unbound

start_precmd()
{
        echo -n "Obtaining a trust anchor:"
        if [ "${unbound_anchorflags}T" = "T" ]; then
                su -m unbound -c /usr/local/sbin/unbound-anchor
        else
                su -m unbound -c "/usr/local/sbin/unbound-anchor ${unbound_anchorflags}"
        fi
        echo .
        /usr/local/sbin/unbound-checkconf > /dev/null
        return $?
}

On Fri, 4 Aug 2017 10:14:19 +0900
"T.Suzuki via Unbound-users" <unbound-users at unbound.net> wrote:

> On Thu, 3 Aug 2017 16:04:56 +0200
> "W.C.A. Wijngaards via Unbound-users" <unbound-users at unbound.net> wrote:
> 
> > Hi T.Suzuki,
> > 
> > I don't know why it is querying for the root DNSKEY for you.  It should
> > not do that, unless a client asked for it.
> 
> There is no client at startup.
> 
> > Do you have verbosity 5 debug logs?  Perhaps this config file is not the
> > actual config file used by your resolver?
> 
> The config is the server's. B
> Because I got verbosity 5 debug log by changing the config file.
> And, I got root.key again :-)
> 
> Thank you.
> 
> # /usr/local/etc/rc.d/unbound start
> Obtaining a trust anchor:.
> Starting unbound.
> [1501809138] unbound[11716:0] debug: creating udp4 socket 127.0.0.2 53
> [1501809138] unbound[11716:0] debug: creating tcp4 socket 127.0.0.2 53
> [1501809138] unbound[11716:0] debug: creating tcp6 socket ::1 8953
> [1501809138] unbound[11716:0] debug: creating tcp4 socket 127.0.0.1 8953
> [1501809138] unbound[11716:0] debug: setup SSL certificates
> root at meme:/usr/local/etc/unbound # cat unbound.log 
> [1501809138] unbound[11717:0] debug: module config: "iterator"
> [1501809138] unbound[11717:0] notice: init module 0: iterator
> [1501809138] unbound[11717:0] debug: target fetch policy for level 0 is 3
> [1501809138] unbound[11717:0] debug: target fetch policy for level 1 is 2
> [1501809138] unbound[11717:0] debug: target fetch policy for level 2 is 1
> [1501809138] unbound[11717:0] debug: target fetch policy for level 3 is 0
> [1501809138] unbound[11717:0] debug: target fetch policy for level 4 is 0
> [1501809138] unbound[11717:0] debug: total of 59485 outgoing ports available
> [1501809138] unbound[11717:0] debug: start threads
> [1501809138] unbound[11717:0] debug: mini-event internal user select method.
> [1501809138] unbound[11717:0] debug: no config, using builtin root hints.
> [1501809138] unbound[11717:0] debug: cache memory msg=66072 rrset=66072 infra=5224 val=0
> [1501809138] unbound[11717:0] info: start of service (unbound 1.6.3).
> 
> -- 
> ------------------------------------------------------------------------------
> T.Suzuki 
> 


-- 
------------------------------------------------------------------------------
T.Suzuki

More information about the Unbound-users mailing list