doc/arm/man.dnssec-revoke.html

	man.dnssec-revoke.html revision 14a656f94b1fd0ababd84a772228dfa52276ba15
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<!--
3e02c9e33656dcd9c364633d42dd785d3e6fdd66Automatic Updater - Copyright (C) 2004-2015 Internet Systems Consortium, Inc. ("ISC")
3e02c9e33656dcd9c364633d42dd785d3e6fdd66Automatic Updater - Copyright (C) 2000-2003 Internet Software Consortium.
3e02c9e33656dcd9c364633d42dd785d3e6fdd66Automatic Updater -
c6fb85f9500350e5ce58c9a24f5d264c8a8bd6f4Automatic Updater - Permission to use, copy, modify, and/or distribute this software for any
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt - purpose with or without fee is hereby granted, provided that the above
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt - copyright notice and this permission notice appear in all copies.
3e02c9e33656dcd9c364633d42dd785d3e6fdd66Automatic Updater -
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt - THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt - REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
3e02c9e33656dcd9c364633d42dd785d3e6fdd66Automatic Updater - AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT,
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt - INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt - LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt - OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt - PERFORMANCE OF THIS SOFTWARE.
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt-->
3e02c9e33656dcd9c364633d42dd785d3e6fdd66Automatic Updater<html>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<head>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<title>dnssec-revoke</title>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<meta name="generator" content="DocBook XSL Stylesheets V1.78.1">
2cbb4ab75757fbb656997a82c14ca07db37d481aAutomatic Updater<link rel="home" href="Bv9ARM.html" title="BIND 9 Administrator Reference Manual">
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<link rel="up" href="Bv9ARM.ch13.html" title="Manual pages">
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<link rel="prev" href="man.dnssec-keygen.html" title="dnssec-keygen">
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<link rel="next" href="man.dnssec-settime.html" title="dnssec-settime">
0a7ed88633a680bb881868b75ded4d09a7bbbc50Automatic Updater</head>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<body bgcolor="white" text="black" link="#0000FF" vlink="#840084" alink="#0000FF">
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<div class="navheader">
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<table width="100%" summary="Navigation header">
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<tr><th colspan="3" align="center"><span class="application">dnssec-revoke</span></th></tr>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<tr>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<td width="20%" align="left">
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<a accesskey="p" href="man.dnssec-keygen.html">Prev</a>�</td>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<th width="60%" align="center">Manual pages</th>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<td width="20%" align="right">�<a accesskey="n" href="man.dnssec-settime.html">Next</a>
0a7ed88633a680bb881868b75ded4d09a7bbbc50Automatic Updater</td>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt</tr>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt</table>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<hr>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt</div>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<div class="refentry">
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<a name="man.dnssec-revoke"></a><div class="titlepage"></div>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt  <div class="refnamediv">
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<h2>Name</h2>
0a7ed88633a680bb881868b75ded4d09a7bbbc50Automatic Updater<p>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt    <span class="application">dnssec-revoke</span>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt     &#8212; Set the REVOKED bit on a DNSSEC key
52c1cac19a87d591152634a1de44a0311383b359Automatic Updater  </p>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt</div>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt
fd0b768f4c23d22c89f8a156a632831583b7fb68Automatic Updater
fd0b768f4c23d22c89f8a156a632831583b7fb68Automatic Updater
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt  <div class="refsynopsisdiv">
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<h2>Synopsis</h2>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt    <div class="cmdsynopsis"><p>
52c1cac19a87d591152634a1de44a0311383b359Automatic Updater      <code class="command">dnssec-revoke</code>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt       [<code class="option">-hr</code>]
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt       [<code class="option">-v <em class="replaceable"><code>level</code></em></code>]
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt       [<code class="option">-V</code>]
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt       [<code class="option">-K <em class="replaceable"><code>directory</code></em></code>]
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt       [<code class="option">-E <em class="replaceable"><code>engine</code></em></code>]
0a7ed88633a680bb881868b75ded4d09a7bbbc50Automatic Updater       [<code class="option">-f</code>]
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt       [<code class="option">-R</code>]
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt       {keyfile}
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt    </p></div>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt  </div>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt  <div class="refsection">
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<a name="id-1.14.11.7"></a><h2>DESCRIPTION</h2>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt    <p><span class="command"><strong>dnssec-revoke</strong></span>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt      reads a DNSSEC key file, sets the REVOKED bit on the key as defined
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt      in RFC 5011, and creates a new pair of key files containing the
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt      now-revoked key.
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt    </p>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt  </div>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt  <div class="refsection">
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<a name="id-1.14.11.8"></a><h2>OPTIONS</h2>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt    <div class="variablelist"><dl class="variablelist">
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<dt><span class="term">-h</span></dt>
52c1cac19a87d591152634a1de44a0311383b359Automatic Updater<dd>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt      <p>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt        Emit usage message and exit.
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt      </p>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt        </dd>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<dt><span class="term">-K <em class="replaceable"><code>directory</code></em></span></dt>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<dd>
52c1cac19a87d591152634a1de44a0311383b359Automatic Updater          <p>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt            Sets the directory in which the key files are to reside.
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt          </p>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt        </dd>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<dt><span class="term">-r</span></dt>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<dd>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt      <p>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt        After writing the new keyset files remove the original keyset
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt        files.
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt      </p>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt        </dd>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<dt><span class="term">-v <em class="replaceable"><code>level</code></em></span></dt>
0a7ed88633a680bb881868b75ded4d09a7bbbc50Automatic Updater<dd>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt          <p>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt            Sets the debugging level.
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt          </p>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt        </dd>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<dt><span class="term">-V</span></dt>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<dd>
0a7ed88633a680bb881868b75ded4d09a7bbbc50Automatic Updater      <p>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt        Prints version information.
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt      </p>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt        </dd>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<dt><span class="term">-E <em class="replaceable"><code>engine</code></em></span></dt>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt<dd>
1bc5499c2a0fc5d2b11849e97cdd6305a64eb242Evan Hunt          <p>
            Specifies the cryptographic hardware to use, when applicable.
          </p>
          <p>
            When BIND is built with OpenSSL PKCS#11 support, this defaults
            to the string "pkcs11", which identifies an OpenSSL engine
            that can drive a cryptographic accelerator or hardware service
            module.  When BIND is built with native PKCS#11 cryptography
            (--enable-native-pkcs11), it defaults to the path of the PKCS#11
            provider library specified via "--with-pkcs11".
          </p>
        </dd>
<dt><span class="term">-f</span></dt>
<dd>
          <p>
            Force overwrite: Causes <span class="command"><strong>dnssec-revoke</strong></span> to
            write the new key pair even if a file already exists matching
            the algorithm and key ID of the revoked key.
          </p>
        </dd>
<dt><span class="term">-R</span></dt>
<dd>
          <p>
        Print the key tag of the key with the REVOKE bit set but do
        not revoke the key.
          </p>
        </dd>
</dl></div>
  </div>

  <div class="refsection">
<a name="id-1.14.11.9"></a><h2>SEE ALSO</h2>

    <p><span class="citerefentry">
        <span class="refentrytitle">dnssec-keygen</span>(8)
      </span>,
      <em class="citetitle">BIND 9 Administrator Reference Manual</em>,
      <em class="citetitle">RFC 5011</em>.
    </p>
  </div>

</div>
<div class="navfooter">
<hr>
<table width="100%" summary="Navigation footer">
<tr>
<td width="40%" align="left">
<a accesskey="p" href="man.dnssec-keygen.html">Prev</a>�</td>
<td width="20%" align="center"><a accesskey="u" href="Bv9ARM.ch13.html">Up</a></td>
<td width="40%" align="right">�<a accesskey="n" href="man.dnssec-settime.html">Next</a>
</td>
</tr>
<tr>
<td width="40%" align="left" valign="top">
<span class="application">dnssec-keygen</span>�</td>
<td width="20%" align="center"><a accesskey="h" href="Bv9ARM.html">Home</a></td>
<td width="40%" align="right" valign="top">�<span class="application">dnssec-settime</span>
</td>
</tr>
</table>
</div>
<p xmlns:db="http://docbook.org/ns/docbook" style="text-align: center;">BIND 9.11.0pre-alpha</p>
</body>
</html>