> This build of OpenSSL 1.0.1e was fully tested and passed all tests so I am > thinking > that an option to the build of bind is the issue here. Probably > "--with-pkcs11" . > > If I don't have that option am I totally shafted for DNSSEC ?
You don't need --with-pkcs11 unless you're planning to use a cryptographic accelerator or hardware service module, and you'd have had to build a special version of OpenSSL for that. Remove it from the configure options and you should be fine. -- Evan Hunt -- e...@isc.org Internet Systems Consortium, Inc. _______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
