[Opendnssec-develop] Discarding RRSIG from input zone
Rickard Bellgrim
rickard.bellgrim at iis.se
Thu Oct 29 16:23:17 UTC 2009
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Hi
The requirements says that "the signer MUST discard all DNSSEC RRs (except DNSKEY RRs) from the input data."
I see that the Signer Engine is keeping the RRSIG (which does not belong to any RR). Is this a feature or a bug?
-----BEGIN PGP SIGNATURE-----
Version: 9.8.3 (Build 4028)
Charset: utf-8
wsBVAwUBSunBdeCjgaNTdVjaAQi0TAgAphz6aJqbkVerUF0tDyuux3Ovgfgio2eL
QkUGhlEjijTrbMw5jKZyvg/QGgiOuBKOXalJCcD1/jXLll6wEAUMtLGWPv1xl7va
N4hrxEbTI9FWBgieeINxT+P07RZ/lCxVmvb+Jc31Eq37tBeYjM99zgh5dorW5nLW
/ctfLKKM1Igur2CIaZK+HZDVt5S/PhUmc8o0x4KepYNF2iR35Nz5wklJSFJDLqqy
7P/cMCOiWIYNeXRdS5fAnAYMcXnipUob7pnuBA2tpu03I7R49tFtpoZE51xMm6d9
7xCmriQDRmGekOWElJfBLgJXP7D2Nie01r8lpSIED6QE39rRWcCyAA==
=Imfl
-----END PGP SIGNATURE-----
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opendnssec.org/pipermail/opendnssec-develop/attachments/20091029/73830449/attachment.htm>
More information about the Opendnssec-develop
mailing list