Maintained by: NLnet Labs

[Unbound-users] Problem with SHA256 DS as trust anchors ?

Ralf Weber
Thu Feb 19 12:11:36 CET 2009


Moin!

On 19.02.2009, at 10:03, W.C.A. Wijngaards wrote:
>> Tried myself, and it works well for me.
>> Do you have openssl 0.9.8 (or newer) ?
>> 0.9.7 does not do SHA256 I think; and that could cause the validation
>> failure - since none of the trust anchors work.
>
> Added that unbound-checkconf and unbound print warnings when trust
> anchors use unsupported algorithms.
That was about what I would suggest. It was the fact that I had two
openssl versions installed on my system. Unbound used 0.9.7, but
my path had 0.9.8. I've manually configured the correct one.

Thanks and so long
-Ralf
---
Ralf Weber      e: fl1ger at fl1ger.de
Bleichgärten 1  t: +49 (0) 6446 889610
35644 Hohenahr  f: +49 (0) 6446 889611
Deutschland     m: +49 (0) 151 22659325