This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Odd DNS Log Entries

All-

I am receiving the following entries in the DNS proxy log. While not verbose, about 3x per day. They seem to appear in pairs.

2013:06:16-12:11:37 Oasis named[4162]: RSA_verify failed
2013:06:16-12:11:37 Oasis named[4162]: error:04091068:rsa routines:INT_RSA_VERIFY:bad signature:rsa_sign.c:291:
2013:06:16-12:11:37 Oasis named[4162]: sucessfully validated after lower casing signer 'US'

I am running ASG version 9.101-12. DNS validation is being used.

Thanks
Jim

This thread was automatically locked due to age.

0 wingman over 12 years ago

All-

I am receiving the following entries in the DNS proxy log. While not verbose, about 3x per day. They seem to appear in pairs.

2013:06:16-12:11:37 Oasis named[4162]: RSA_verify failed
2013:06:16-12:11:37 Oasis named[4162]: error:04091068:rsa routines:INT_RSA_VERIFY:bad signature:rsa_sign.c:291:
2013:06:16-12:11:37 Oasis named[4162]: sucessfully validated after lower casing signer 'US'

I am running ASG version 9.101-12. DNS validation is being used.

Thanks
Jim

What are the DNS servers you are using? Do they support DNS signing?
Cancel
Vote Up 0 Vote Down

Cancel
0 BAlfson over 12 years ago

sucessfully validated after lower casing signer 'US'

What is the FQDN that's being looked up? I bet things are working as desired and that the RRSIG record for domain.us incorrectly lists the signer as 'US' instead of 'us'.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel
0 scottj_01 over 12 years ago in reply to BAlfson

Wingman, Bob,

I am using level 3 DNS servers which do support DNS signing. Bob, I think you are correct the signer may be incorrect. This might be another for the bug list....

Thanks,
Jim
Cancel
Vote Up 0 Vote Down

Cancel