On 2010-11-27 13:09, Marc Lampo wrote:
> Q2: Does Bind "automatic" resigning take the TTL into account ?
> (so that it does not resign later then "present expiration" - "TTL")
Depending on the configuration:
>sig-validity-interval
>Specifies the number of days into the future when DNSSEC sign
> From: "Marc Lampo"
> Date: Sat, 27 Nov 2010 13:09:13 +0100 (CET)
> Sender: bind-users-bounces+oberman=es@lists.isc.org
>
> Hello,
>
> In my opinion, the following situation should be avoided,
> but I'd welcome motivated second opinions.
>
> A DNSSEC verification script yielded a warning,
Hello,
In my opinion, the following situation should be avoided,
but I'd welcome motivated second opinions.
A DNSSEC verification script yielded a warning, this morning :
HIDDEN : (soa = HIDDEN) (# RRSIGS : 1) (keyid : HIDDEN)
inception: 20101124231706 ok
now : 2010112708300
3 matches
Mail list logo
