Use different tsig alg

author Peter Palfrader <peter@palfrader.org>

Mon, 30 Dec 2013 22:05:12 +0000 (22:05 +0000)

committer Peter Palfrader <peter@palfrader.org>

Mon, 30 Dec 2013 22:05:12 +0000 (22:05 +0000)
author Peter Palfrader <peter@palfrader.org>
Mon, 30 Dec 2013 22:05:12 +0000 (22:05 +0000)
committer Peter Palfrader <peter@palfrader.org>
Mon, 30 Dec 2013 22:05:12 +0000 (22:05 +0000)
diff --git a/modules/named/templates/named.conf.puppet-shared-keys.erb b/modules/named/templates/named.conf.puppet-shared-keys.erb

index e9f7022bbcfead0a00e76482aa57f031f38e4dbd..ab9c65d5885b9a34f76c104c2064d6ca40c40a9f 100644 (file)
--- a/modules/named/templates/named.conf.puppet-shared-keys.erb
+++ b/modules/named/templates/named.conf.puppet-shared-keys.erb
@@ -23,7 +23,7 @@ pairs.each do |pair|
  
         key = scope.function_hkdf(['/etc/puppet/secret', "puppet-key-#{keyname}"])
  
-       lines << "key #{keyname} { algorithm hmac-md5; secret \"#{key}\"; };"
+       lines << "key #{keyname} { algorithm hmac-sha256; secret \"#{key}\"; };"
  
         remote_ip = scope.lookupvar('site::allnodeinfo')[other]['ipHostNumber']
         remote_ip.each do |r|
author	Peter Palfrader <peter@palfrader.org>
	Mon, 30 Dec 2013 22:05:12 +0000 (22:05 +0000)
committer	Peter Palfrader <peter@palfrader.org>
	Mon, 30 Dec 2013 22:05:12 +0000 (22:05 +0000)