Thomas Schulz wrote:
>
> I found that I had 'dnssec-enable yes' along with a managed-keys
> statement with an initial-key. If I change to 'dnssec-enable auto'
> do I still need a managed-keys statement? If not will it hurt to have
> one? Can I have a managed-keys statement without an initial-key?
In the following I ment to say 'dnssec-validation' instead of 'dnssec-enable'.
> > https://www.isc.org/blogs/2017-root-key-rollover-what-does-it-mean-for-bin
> > d-users/
> >
> > Towards the end of the blog, there is a short list of possible corner
> > cases that could trip people up during the
> https://www.isc.org/blogs/2017-root-key-rollover-what-does-it-mean-for-bin
> d-users/
>
> Towards the end of the blog, there is a short list of possible corner
> cases that could trip people up during the rollover. If
> you folks can think of others, please do share them.
I found a case where
You all are probably aware of the plans for rolling the root dnssec key in
2017. ICANN is trying to ensure this goes smoothly and we are of course
looking for ways ISC can help.
There is a draft blog post on the topic of the 2017 Root Key Rollover, kind of
hidden on ISC’s web site here:
https
4 matches
Mail list logo
