Groups | Search | Server Info | Keyboard shortcuts | Login | Register

Groups > comp.protocols.dns.bind > #16044

how to revert signed db zone file to unsgined plain text (remove dnssec keys)

From Jelle de Jong <jelledejong@powercraft.nl>
Newsgroups comp.protocols.dns.bind
Subject how to revert signed db zone file to unsgined plain text (remove dnssec keys)
Date 2020-08-08 21:17 +0200
Message-ID <mailman.796.1596914258.942.bind-users@lists.isc.org> (permalink)
References <9010d1a0-fc3c-3fc3-c94e-bfcae79fab57@powercraft.nl>

Show all headers | View raw

Hello everybody,

This will sound counter intuitive but I want to convert a 
db.powercraft.nl.signed file to db.powercraft.nl (unsigned without 
keys). I do have the keys used, but not the original file that got singed.

I know I can convert the raw format to text but the zone file is rather 
big and i want to get rid of all the sign keys.

named-compilezone -f raw -F text -o powercraft.nl.text powercraft.nl 
/var/cache/bind/db.powercraft.nl.signed

named-checkzone -D -f raw powercraft.nl 
/var/cache/bind/db.powercraft.nl.signed

Kind regards,

Jelle de Jong

Back to comp.protocols.dns.bind | Previous | Next | Find similar

Thread

how to revert signed db zone file to unsgined plain text (remove dnssec keys) Jelle de Jong <jelledejong@powercraft.nl> - 2020-08-08 21:17 +0200

csiph-web