From: Suzanne Goldlust Date: Fri, 17 Jun 2022 15:06:23 +0000 (+0000) Subject: Minor grammar improvements in the Signing chapter of the DNSSEC Guide X-Git-Tag: v9.16.31~3^2~1 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=71f3d521cbad3d937fb668a182965168ae1927dd;p=thirdparty%2Fbind9.git Minor grammar improvements in the Signing chapter of the DNSSEC Guide (cherry picked from commit 6b1ad4dcfba41585be42b94592ee924b7b781cf5) --- diff --git a/doc/dnssec-guide/signing.rst b/doc/dnssec-guide/signing.rst index 334498e2411..534b35e857e 100644 --- a/doc/dnssec-guide/signing.rst +++ b/doc/dnssec-guide/signing.rst @@ -1150,7 +1150,7 @@ ZSK, and 257 is KSK. The name of the file also tells us something about the contents. See chapter :ref:`zone_keys` for more details. -Make sure these files are readable by ``named`` and make sure that the +Make sure that these files are readable by ``named`` and that the ``.private`` files are not readable by anyone else. Setting Key Timing Information @@ -1575,7 +1575,7 @@ has three parameters: the unsigned zone name also generates a plain text file ``/etc/bind/db/example.com.signed.db``, which you can verify for correctness. -Finally, you'll need to update ``named.conf`` to load the signed version +Finally, ``named.conf`` needs to be updated to load the signed version of the zone, which looks something like this: ::