On 2010-08-06, at 6:36 PM, Tony Finch wrote:
>
> OpenDNSSEC predates BIND's auto-signing functionality, so it has become
> partly obsolete - but not completely.
OpenDNSSEC is far from obsolete, it's in active development [1] and is being
used for some important zones [2].
dave
[1]
http://ww
On Fri, 6 Aug 2010, Martin McCormick wrote:
> I have started looking at various ways for our
> organization to begin using dns-sec as this appears to be a high
> management priority and it will eventually become necessary to
> operate. We have a fairly simple structure with a official master
On 06/08/10 12:24, Martin McCormick wrote:
The one thing that impresses me about dns-sec is that it
appears to be one of those things that will probably work fine
after installation but getting there may be an adventure to put
it mildly.
My advice is to investigate upgrading to Bind 9.
Niobos writes:
> Definitely consider the 9.7 series! You can enable auto-dnssec which
> will maintain your signatures for you out-of-the-box. It also supports
> key rollover, but IIRC doesn't generate new keys at this moment.
That's not much of a problem. Thanks for reminding me of 9.7.
Martin Mc
That is, if one can get the latest
version to compile under FreeBSD8.0. So far, the configure
process is one dependency after another and I have yet to see it
actually finish so that is shades of years gone by when
installing software was an art on good days.
Use the port, see
Hi,
On 2010-08-06 13:24, Martin McCormick wrote:
> We are upgrading all DNS and DHCP servers to FreeBSD8.0
> and my plan was to use bind9.6x. If there is a better version for
> dns-sec, best to plan to use it now in order to sleigh as much
> of this dragon which is breathing fire on the edge
I'm running 9.6 in our lab environment with DNSSEC enabled, not much
difficulty at all. To make it even easier, you might want to look at the
Webmin BIND module. It makes it even easier.
Also, I went to ISC's BIND deployment workshop and found
it very insightful.
Brian
-Original Message
7 matches
Mail list logo
