Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out

To: Debian User <debian-user@lists.debian.org>
Subject: Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
From: local10 <local10@tutanota.com>
Date: Mon, 13 Mar 2023 20:53:35 +0100 (CET)
Message-id: <[🔎] NQRXFzq--3-9@tutanota.com>
In-reply-to: <[🔎] E1pbgfW-0001cy-8F@enotuniq.net>
References: <[🔎] NQOfJvh--3-9@tutanota.com> <[🔎] 7ba1b0a4-b490-a4d9-6f58-ebf7a62d5579@ardley.org> <[🔎] NQP2REz--B-9@tutanota.com> <[🔎] 3997a47a-10a5-0335-952b-cf834fae34c3@ardley.org> <[🔎] NQPESYE--3-9@tutanota.com> <[🔎] f881d5b7-6e9c-945d-7d6a-67cb3cfb9663@ardley.org> <[🔎] NQPOtbM--3-9@tutanota.com> <[🔎] E1pbfcm-0001Yt-SJ@enotuniq.net> <[🔎] NQPiwO3--3-9@tutanota.com> <[🔎] E1pbgfW-0001cy-8F@enotuniq.net>

Mar 13, 2023, 12:06 by recoverym4n@enotuniq.net:

> Looks correct, assuming that the contents of the key start with AwEAAaz
> and end with V74bU=.
>
> ....
> Look at /usr/share/dns/root.key. Compare its contents with
> /etc/bind/bind.keys. Replace the latter if needed.
>
> "dpkg-reconfigure -plow bind9" is probably more preferred way of doing
> it.
>

They keys in the "/etc/bind/bind.keys" and "/usr/share/dns/root.key" are identical:

# cat /etc/bind/bind.keys
...
trust-anchors {
        # This key (20326) was published in the root zone in 2017.
        . initial-key 257 3 8 "AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3
                +/4RgWOq7HrxRixHlFlExOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kv
                ArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgCmr3EgVLrjyBxWezF
                0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+e
                oZG+SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfd
                RUfhHdY6+cn8HFRm+2hM8AnXGXws9555KrUB5qihylGa8subX2Nn6UwN
                R1AkUTV74bU=";
};


Regards,

Reply to:

Follow-Ups:
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: Reco <recoverym4n@enotuniq.net>

References:
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: local10 <local10@tutanota.com>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: Jeremy Ardley <jeremy@ardley.org>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: local10 <local10@tutanota.com>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: Jeremy Ardley <jeremy@ardley.org>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: local10 <local10@tutanota.com>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: Jeremy Ardley <jeremy@ardley.org>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: local10 <local10@tutanota.com>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: Reco <recoverym4n@enotuniq.net>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: local10 <local10@tutanota.com>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: Reco <recoverym4n@enotuniq.net>

Prev by Date: Re: Grub bug on Debian 11
Next by Date: Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
Previous by thread: Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
Next by thread: Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
Index(es):
- Date
- Thread