cmdeploy running unbound-anchor is redundant

https://github.com/chatmail/relay/blob/5ba99dc78214808d0e95b86e7e4c37b974b7eef3/cmdeploy/src/cmdeploy/__init__.py#L595-L601


This is redundant as the unbound service automatically calls this:

```
[Unit]
Description=Unbound DNS server
Documentation=man:unbound(8)
After=network.target
Before=nss-lookup.target
Wants=nss-lookup.target

[Service]
Type=notify
Restart=on-failure
EnvironmentFile=-/etc/default/unbound
ExecStartPre=-/usr/libexec/unbound-helper chroot_setup
ExecStartPre=-/usr/libexec/unbound-helper root_trust_anchor_update
ExecStart=/usr/sbin/unbound -d -p $DAEMON_OPTS
ExecStopPost=-/usr/libexec/unbound-helper chroot_teardown
ExecReload=+/bin/kill -HUP $MAINPID

[Install]
WantedBy=multi-user.target
```

It's handled by `ExecStartPre` in the systemd unit file

	server.shell(
	name="Generate root keys for validating DNSSEC",
	commands=[
	"unbound-anchor -a /var/lib/unbound/root.key \|\| true",
	"systemctl reset-failed unbound.service",
	],
	)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

cmdeploy running unbound-anchor is redundant #542

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

cmdeploy running unbound-anchor is redundant #542

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions