ODS-AUDITOR(1) OpenDNSSEC ODS-AUDITOR(1)NAME
ods-auditor - auditor component of OpenDNSSEC
ods-auditor is a module which provides auditing capabilities to OpenDNSSEC.
Once an unsigned zone has been signed, this module is used to check that the signing process has run successfully. It checks that no data
has been lost (or non-DNSSEC data added), and that all the DNSSEC records are correct. It used the OpenDNSSEC standard logging (defined in
The Auditor takes the signed and unsigned zones and compares them. It first parses both files, and creates transient files which are then
sorted into canonical order. These files are then processed by the Auditor. If processing an NSEC3-signed file, the Auditor will create
additional temporary files, which are processed after the main auditing run.
-c, --conf [PATH_TO_CONF_FILE]
Path to OpenDNSSEC configuration file
(defaults to /etc/opendnssec/conf.xml)
-k, --kasp [PATH_TO_KASP_FILE]
Path to KASP policy file
(defaults to the path given in the configuration file)
-z, --zone [ZONE_NAME]
Single zone to audit
(defaults to audit all zones)
If a single zone is specified, then this option may override the specified signed file with another. This is for use by the signer.
(defaults to the path given in the zone list)
Display version information
-h, -?, --help
Show this message
ods-auditor 1.0.0rc3 January 2010 ODS-AUDITOR(1)
Check Out this Related Man Page
ods-enforcerd(8) OpenDNSSEC ods-enforcerd ods-enforcerd(8)NAME
ods-enforcerd - OpenDNSSEC Policy Enforcer daemon
ods-enforcerd [-c FILE] [-d] [-1] [-P PIDFILE] [-v] [-h]
ods-enforcerd is part of the OpenDNSSEC software. It will enforce any policies that you have set up for zones under the control of
OpenDNSSEC (including the generation of keys if configured to). For more information, go to http://www.opendnssec.org and visit the Docu-
Invoked with no arguments, ods-enforcerd will read the default configuration file /etc/opendnssec/conf.xml and act according to its con-
OPTIONS -c FILE
Use alternate conf.xml.
-d Run in debug mode.
-1 Run once, then exit.
Use alternate process-id file.
-v Print the version, then exit.
-h Show help, then exit.
The ods-enforcerd can be controlled using the ods-control utility. Signals may also be used.
SIGHUP ods-enforcerd runs on a schedule defined in conf.xml; this signal will interrupt that and force the daemon to wake up.
Force the daemon to stop (if it is running it will finish what it is doing first).
The configuration of ods-enforcerd is contained in the conf.xml file; the options available are described in the OpenDNSSEC documentation.
will log all the problems via the standard syslog(8) daemon facility.
default configuration file.
default process-id file.
SEE ALSO ods-auditor(1), ods-control(8), ods-hsmspeed(1), ods-hsmutil(1), ods-kaspcheck(1), ods-ksmutil(1), ods-signer(8), ods-signerd(8), ods-tim-
ing(5), opendnssec(7), http://www.opendnssec.org/
ods-enforcerd was written by John Dickinson and Nominet as part of the OpenDNSSEC project.
OpenDNSSEC February 2010 ods-enforcerd(8)
I am an IT auditor with a big 4 accounting firm and am cur the process of conducting an application program change audit for a large public company related to Sarbanes Oxley. This is my first time using this forum and need some assistance in verifying a fact that I believe to be true.
My client... (1 Reply)
I just started using this good free software that lets you document your entire IT infrastructure. It's called Auditor Lite or Documentor for Unix and in my opinion it's the best software out there and the fact that it is free is even better. Just thought I would let you guys know if you want to... (1 Reply)
Good day every body,
Iv've been given a list of files and directory requested by the Auditor's. My problem is how do i list the file with the permission given and also save the file into text.file so that i can passed the result/oucome to them?? Thanks alot guys!! (2 Replies)
I am an auditor and we are currently trying to identify the "Key" files in the AIX OS that we would want to be notified about if changed. I'm looking for some advice on critical files that should not change unless specifically requested by the admin. Then checksum those files and review them as... (1 Reply)
Hi, I'm an I.T. auditor and have to validate the password rules/settings (complexity rules, minimum password length, special characters, etc.)within UNIX for a client. In MS AD, i simply ask for a screen shot of the password settings. How can i do this in UNIX? help much appreciated. Also, how can... (1 Reply)
We just had an auditor tell us to formally review our logging parameters on the server and implement best practice for logging, based on a risk assessment. Phew!
Before my time here, there was no reasoning behind what we chose to log or not log.
Any ideas where such a "best practice"... (1 Reply)
We have almost 45,000 data files created by a script daily. The file names are of format-ODS.POS.<pharmacyid>.<table name>.<timestamp>.dat. There will be one data file like this for each pharmacy and each table.(Totally around 45,000)
The requirement is to create a control file for each... (2 Replies)
How do I extract cell content from openoffice spreadsheets (ods files)?
If I e.g. have a document myspreadsheet.ods and I want to extract the content of cell A1 in sheet1, how do I do that using a linux shell script? (1 Reply)
this is my first post on this Forum, glad to be here.
I'm trying to fix an .ods file. Yes, I had a backup, but it's also corrupted.
When opening the document I get this EM:
format error discovered in the file in sub-document content.xml at
So I... (3 Replies)
Dear all experts in this forum,
I have faced a audit issue as auditor told that we should not have SUID on /bin/su. As I have checked using Google, I found most of the site only telling that /bin/su should have the permission bit as -rwsr-xr-x but never explain why /bin/su need this permission... (4 Replies)