[Opendnssec-develop] OpenDNSSEC and RFC5155

Marco Davids (SIDN) marco.davids at sidn.nl
Wed Feb 17 14:46:36 UTC 2010

>>> RFC5155 says, on page 32, "zone signing tools SHOULD NOT default to using
>>> opt-out". But in trunk/OpenDNSSEC/conf/kasp.xml.in we turn opt-out on...
>>> Should we comment this tag out?
>> Yes...
> +1


+1 here too.

Please also add a remark in kasp.xml, referring to RFC5155.

Well spotted btw!


More information about the Opendnssec-develop mailing list