[Opendnssec-develop] HSM review/howto
John Dickinson
jad at jadickinson.co.uk
Mon Mar 23 11:16:56 UTC 2009
On 23 Mar 2009, at 10:16, Rick van Rein wrote:
> Hi,
>
>> The
>> big problem I found with most of them is [...]
>> the lack of basic utilities such as a key generator.
>
> This is probably because applications usually have their own
> formatting
> issues with the keys being used; attributes are usually set in a way
> that suits the app. So, applications generate their own keys.
That is something else I hate - a key is a key it shouldn't matter
what you are going to use it for. It should not be necessary for there
to be a dnssec-keygen and a ssh-keygen and a genrsa and so on and so
on... :)
John
---
John Dickinson
http://www.jadickinson.co.uk
More information about the Opendnssec-develop
mailing list