[Opendnssec-develop] Auditor files

Alex Dalitz AlexD at nominet.org.uk
Mon Jul 5 08:21:21 UTC 2010

HI Rickard - 

Sorry I didn't get a chance to check code in for this over the weekend.

I have three questions :

1) Should we actually be supporting this in the first place? i.e. allowing people to shoot themselves in the foot by having a shorter signature lifetime than TTL?

2) If so, could you please also test the partial auditor fix? I include partial_auditor.rb, which you can run  by installing and using the "-p" flag with the auditor. It would be intersting to ensure it failed before checking that the fix fixed it.

3) Does ods-kaspcheck pick this up?

If we *do* want the fix, and the partial_auditor is OK, then I'll check in all the files (I have also prepared fixes for the trunk).

I'll be online sporadically throughout the day. If I hear back from you in the positive, then I'll upload the patches to subversion.



More information about the Opendnssec-develop mailing list