From: Petr Špaček Date: Thu, 16 Jun 2022 11:06:11 +0000 (+0200) Subject: Deduplicate key filename description in the DNSSEC chapter X-Git-Tag: v9.19.3~30^2~7 X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=1dcc34f0768f69433b9bef4289747cdb4d9206c6;p=thirdparty%2Fbind9.git Deduplicate key filename description in the DNSSEC chapter --- diff --git a/doc/arm/dnssec.inc.rst b/doc/arm/dnssec.inc.rst index cce6aa56f7f..af0d10a84ab 100644 --- a/doc/arm/dnssec.inc.rst +++ b/doc/arm/dnssec.inc.rst @@ -350,12 +350,8 @@ The following command generates an ECDSAP256SHA256 key for the ``dnssec-keygen -a ECDSAP256SHA256 -n ZONE child.example.`` Two output files are produced: ``Kchild.example.+013+12345.key`` and -``Kchild.example.+013+12345.private`` (where 12345 is an example of a -key tag). The key filenames contain the key name (``child.example.``), -the algorithm (5 is RSASHA1, 8 is RSASHA256, 13 is ECDSAP256SHA256, 15 is -ED25519, etc.), and the key tag (12345 in this case). The private key (in -the ``.private`` file) is used to generate signatures, and the public -key (in the ``.key`` file) is used for signature verification. +``Kchild.example.+013+12345.private``. Structure of the file names is described +in section `Zone Keys`_. To generate another key with the same properties but with a different key tag, repeat the above command.