[Opendnssec-develop] OpenDNSSEC and RFC5155

Marco Davids (SIDN) marco.davids at sidn.nl
Wed Feb 17 14:46:36 UTC 2010



>>> RFC5155 says, on page 32, "zone signing tools SHOULD NOT default to using
>>> opt-out". But in trunk/OpenDNSSEC/conf/kasp.xml.in we turn opt-out on...
>>> Should we comment this tag out?
>>
>>
>> Yes...
> 
> +1

And...

+1 here too.

Please also add a remark in kasp.xml, referring to RFC5155.

Well spotted btw!

-- 
Marco



More information about the Opendnssec-develop mailing list