[Opendnssec-develop] Erroneous jitter semantics

Jakob Schlyter jakob at kirei.se
Thu Mar 11 09:42:36 UTC 2010

On 11 mar 2010, at 10.39, Matthijs Mekking wrote:

> I am not too happy about decreasing the validity period with jitter,
> instead of increasing it. This might allow people to shoot in their own
> foot (by configuring stupid values for signature validity and jitter).

this question is if we want to say "the validity period is no longer than X" or "the validity period is at least Y".

I kind of like my 3rd jitter semantics, i.e. jitter AROUND the validity period - but I understand may just confuse people even more.


More information about the Opendnssec-develop mailing list