Re: Changes BIND 9.15+ source distribution (gz -> xz, and SHA1 deprecation)

On 12/19/19 1:16 AM, Ondřej Surý wrote: > The other change we will introduce early next year (timed with BIND 9.16.0 > release) is the deprecation of SHA1 checksums. This is timely as I was about to ask if there's any reason to generate SHA1 DNSKEY records? I should think that anything I care a

Re: dnssec-policy & views

Hi Graham, On 2/29/20 5:27 PM, Graham Clinch wrote: > How does the new-in-9.16 dnssec-policy interact with views - in > particular for key generation/rollover? > > For example, we have a zone defined in multiple views with different > contents (and thus not suitable for in-view), being signed by