.\" OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
.\" PERFORMANCE OF THIS SOFTWARE.
.\"
-.\" $Id: dig.1,v 1.14.2.4.2.8 2005/05/13 02:43:17 marka Exp $
+.\" $Id: dig.1,v 1.14.2.4.2.9 2005/08/30 02:34:59 marka Exp $
.\"
.hy 0
.ad l
Chase DNSSEC signature chains\&. Requires dig be compiled with \-DDIG_SIGCHASE\&.
.TP
\fB+trusted\-key=####\fR
-Specify a trusted key to be used with \fB+sigchase\fR\&. Requires dig be compiled with \-DDIG_SIGCHASE\&.
+Specifies a file containing trusted keys to be used with \fB+sigchase\fR\&. Each DNSKEY record must be on its own line\&.
+If not specified \fBdig\fR will look for \fI/etc/trusted\-key\&.key\fR then \fItrusted\-key\&.key\fR in the current directory\&.
+Requires dig be compiled with \-DDIG_SIGCHASE\&.
.TP
\fB+[no]topdown\fR
When chasing DNSSEC signature chains perform a top down validation\&. Requires dig be compiled with \-DDIG_SIGCHASE\&.
- OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
- PERFORMANCE OF THIS SOFTWARE.
-->
-<!-- $Id: dig.html,v 1.6.2.4.2.11 2005/07/18 02:36:44 marka Exp $ -->
+<!-- $Id: dig.html,v 1.6.2.4.2.12 2005/08/30 02:34:59 marka Exp $ -->
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
-DDIG_SIGCHASE.
</p></dd>
<dt><span class="term"><code class="option">+trusted-key=####</code></span></dt>
-<dd><p>
-Specify a trusted key to be used with <code class="option">+sigchase</code>.
-Requires dig be compiled with -DDIG_SIGCHASE.
-</p></dd>
+<dd>
+<p>
+ Specifies a file containing trusted keys to be used with
+ <code class="option">+sigchase</code>. Each DNSKEY record must be
+ on its own line.
+ </p>
+<p>
+ If not specified <span><strong class="command">dig</strong></span> will look for
+ <code class="filename">/etc/trusted-key.key</code> then
+ <code class="filename">trusted-key.key</code> in the current directory.
+ </p>
+<p>
+ Requires dig be compiled with -DDIG_SIGCHASE.
+ </p>
+</dd>
<dt><span class="term"><code class="option">+[no]topdown</code></span></dt>
<dd><p>
When chasing DNSSEC signature chains perform a top down validation.
</p>
</div>
<div class="refsect1" lang="en">
-<a name="id2515831"></a><h2>MULTIPLE QUERIES</h2>
+<a name="id2515852"></a><h2>MULTIPLE QUERIES</h2>
<p>
The BIND 9 implementation of <span><strong class="command">dig </strong></span> supports
specifying multiple queries on the command line (in addition to
</p>
</div>
<div class="refsect1" lang="en">
-<a name="id2515890"></a><h2>FILES</h2>
+<a name="id2515911"></a><h2>FILES</h2>
<p>
<code class="filename">/etc/resolv.conf</code>
</p>
</p>
</div>
<div class="refsect1" lang="en">
-<a name="id2515909"></a><h2>SEE ALSO</h2>
+<a name="id2515930"></a><h2>SEE ALSO</h2>
<p>
<span class="citerefentry"><span class="refentrytitle">host</span>(1)</span>,
<span class="citerefentry"><span class="refentrytitle">named</span>(8)</span>,
</p>
</div>
<div class="refsect1" lang="en">
-<a name="id2515947"></a><h2>BUGS </h2>
+<a name="id2515969"></a><h2>BUGS </h2>
<p>
There are probably too many query options.
</p>
.\" OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
.\" PERFORMANCE OF THIS SOFTWARE.
.\"
-.\" $Id: dnssec-keygen.8,v 1.19.12.7 2005/05/12 23:56:56 sra Exp $
+.\" $Id: dnssec-keygen.8,v 1.19.12.8 2005/08/30 02:35:00 marka Exp $
.\"
.hy 0
.ad l
Sets the debugging level\&.
.SH "GENERATED KEYS"
.PP
-When \fBdnssec\-keygen\fR completes successfully, it prints a string of the form \fIKnnnn\&.+aaa+iiiii\fR to the standard output\&. This is an identification string for the key it has generated\&. These strings can be used as arguments to \fBdnssec\-makekeyset\fR\&.
+When \fBdnssec\-keygen\fR completes successfully, it prints a string of the form \fIKnnnn\&.+aaa+iiiii\fR to the standard output\&. This is an identification string for the key it has generated\&.
.TP 3
\(bu
\fInnnn\fR is the key name\&.
- OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
- PERFORMANCE OF THIS SOFTWARE.
-->
-<!-- $Id: dnssec-keygen.html,v 1.5.2.1.4.11 2005/07/18 02:36:44 marka Exp $ -->
+<!-- $Id: dnssec-keygen.html,v 1.5.2.1.4.12 2005/08/30 02:35:01 marka Exp $ -->
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
When <span><strong class="command">dnssec-keygen</strong></span> completes successfully,
it prints a string of the form <code class="filename">Knnnn.+aaa+iiiii</code>
to the standard output. This is an identification string for
- the key it has generated. These strings can be used as arguments
- to <span><strong class="command">dnssec-makekeyset</strong></span>.
+ the key it has generated.
</p>
<div class="itemizedlist"><ul type="disc">
<li><p>
</p>
</div>
<div class="refsect1" lang="en">
-<a name="id2515217"></a><h2>EXAMPLE</h2>
+<a name="id2515213"></a><h2>EXAMPLE</h2>
<p>
To generate a 768-bit DSA key for the domain
<strong class="userinput"><code>example.com</code></strong>, the following command would be
</p>
</div>
<div class="refsect1" lang="en">
-<a name="id2515262"></a><h2>SEE ALSO</h2>
+<a name="id2515259"></a><h2>SEE ALSO</h2>
<p>
<span class="citerefentry"><span class="refentrytitle">dnssec-signzone</span>(8)</span>,
<em class="citetitle">BIND 9 Administrator Reference Manual</em>,
</p>
</div>
<div class="refsect1" lang="en">
-<a name="id2515296"></a><h2>AUTHOR</h2>
+<a name="id2515292"></a><h2>AUTHOR</h2>
<p>
<span class="corpauthor">Internet Systems Consortium</span>
</p>
projects / thirdparty / bind9.git / commitdiff
