Moin! On 19.02.2009, at 10:03, W.C.A. Wijngaards wrote: >> Tried myself, and it works well for me. >> Do you have openssl 0.9.8 (or newer) ? >> 0.9.7 does not do SHA256 I think; and that could cause the validation >> failure - since none of the trust anchors work. > > Added that unbound-checkconf and unbound print warnings when trust > anchors use unsupported algorithms. That was about what I would suggest. It was the fact that I had two openssl versions installed on my system. Unbound used 0.9.7, but my path had 0.9.8. I've manually configured the correct one. Thanks and so long -Ralf --- Ralf Weber e: fl1ger at fl1ger.de Bleichgärten 1 t: +49 (0) 6446 889610 35644 Hohenahr f: +49 (0) 6446 889611 Deutschland m: +49 (0) 151 22659325