Go to main content

man pages section 8: System Administration Commands

Exit Print View

Updated: Wednesday, July 27, 2022
 
 

nsec3hash (8)

Name

nsec3hash - generate NSEC3 hash

Synopsis

nsec3hash {salt} {algorithm} {iterations} {domain}

nsec3hash -r {algorithm} {flags} {iterations} {salt} {domain}

Description

NSEC3HASH(8)                        BIND 9                        NSEC3HASH(8)



NAME
       nsec3hash - generate NSEC3 hash

SYNOPSIS
       nsec3hash {salt} {algorithm} {iterations} {domain}

       nsec3hash -r {algorithm} {flags} {iterations} {salt} {domain}

DESCRIPTION
       nsec3hash  generates  an NSEC3 hash based on a set of NSEC3 parameters.
       This can be used to check the validity of NSEC3  records  in  a  signed
       zone.

       If  this  command  is  invoked  as  nsec3hash -r, it takes arguments in
       order, matching the first four fields of an NSEC3  record  followed  by
       the domain name: algorithm, flags, iterations, salt, domain. This makes
       it convenient to copy and paste a portion of  an  NSEC3  or  NSEC3PARAM
       record into a command line to confirm the correctness of an NSEC3 hash.

ARGUMENTS
       salt   This is the salt provided to the hash algorithm.

       algorithm
              This  is  a  number indicating the hash algorithm. Currently the
              only supported hash algorithm for NSEC3 is SHA-1, which is indi-
              cated by the number 1; consequently "1" is the only useful value
              for this argument.

       flags  This is provided for compatibility with NSEC3  record  presenta-
              tion  format,  but  is ignored since the flags do not affect the
              hash.

       iterations
              This is the number of additional times the hash should  be  per-
              formed.

       domain This is the domain name to be hashed.


ATTRIBUTES
       See attributes(7) for descriptions of the following attributes:


       +---------------+--------------------------+
       |ATTRIBUTE TYPE |     ATTRIBUTE VALUE      |
       +---------------+--------------------------+
       |Availability   | network/dns/bind         |
       +---------------+--------------------------+
       |Stability      | Pass-through uncommitted |
       +---------------+--------------------------+

SEE ALSO
       BIND 9 Administrator Reference Manual, RFC 5155.

AUTHOR
       Internet Systems Consortium

COPYRIGHT
       2022, Internet Systems Consortium



NOTES
       Source  code  for open source software components in Oracle Solaris can
       be found at https://www.oracle.com/downloads/opensource/solaris-source-
       code-downloads.html.

       This     software     was    built    from    source    available    at
       https://github.com/oracle/solaris-userland.   The  original   community
       source                was                downloaded                from
       http://ftp.isc.org/isc/bind9/9.16.29/bind-9.16.29.tar.xz.

       Further information about this software can be found on the open source
       community website at http://www.isc.org/software/bind/.



9.16.29                           2022-05-10                      NSEC3HASH(8)
Copyright © 1993, 2022, Oracle and/or its affiliates.  
Previous
Next