the dnnssec root key file in /etc/unbound/root.key was not found. This file is needed for the verification of DNSSEC responses.

2 replies [Last post]
GrevenGull
Offline
Joined: 12/18/2017

Trying to set up GNS, and currently struggling with the GnuTLS package.

I think I have installed libnettle and gmplib successfully (which are needed packages.

But when I try to configure the GnuTLS I get this message:

"The dnnssec root key file in /etc/unbound/root.key was not found.
This file is needed for the verification of DNSSEC responses.
Use the command: unbound-anchor -a "etc/unbound/root.key"
to generate or update it."

And if I do said command I get this:

"[1527260671] libunbound[19789:0] error: unable to open /etc/unbound/root.key for reading: No such file or directory
[1527260671] libunbound[19789:0] error: error reading auto-trust-anchor-file: /etc/unbound/root.key
[1527260671] libunbound[19789:0] error: validator: error in trustanchors config
[1527260671] libunbound[19789:0] error: validator: could not apply configuration settings.
[1527260671] libunbound[19789:0] error: module init for module validator failed"

Anybody here know anything about this? Seen this type of error before?

GrevenGull
Offline
Joined: 12/18/2017

Does the error message simply mean that I must use this command:

unbound-anchor -a

followed by any directory that exists? So I can just do this:

unbound-anchor -a "/"

if I'd like?

GrevenGull
Offline
Joined: 12/18/2017

I tried, that was not the case.