[Opendnssec-develop] v1.1 RC1

Matthijs Mekking matthijs at NLnetLabs.nl
Wed Mar 31 12:35:27 UTC 2010


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I'll add it to the known issues then, since we cannot fix this before 1.1.

Matthijs

Rickard Bellgrim wrote:
>>
>> Rickard Bellgrim wrote:
>>> * We are still struggling with dropped signatures during key rollover.
>>
>> I hear that there is a need between a smooth transition between step 2
>> and 3 of the key rollover process. However, this requires a new state:
>> 'publish, but pre-generate signatures with this key if there are no
>> fresh signatures for current active keys, but don't publish those
>> signatures yet'. This will replace the publish state in the above
>> situation.
> 
> I just thought that this was what we were doing. Should this be
> considered as a known issue?
> 
> Then only thing left before an RC1 is to test the privdrops for zonefetcher.
> 
> // Rickard
> 
> 
> ------------------------------------------------------------------------
> 
> _______________________________________________
> Opendnssec-develop mailing list
> Opendnssec-develop at lists.opendnssec.org
> https://lists.opendnssec.org/mailman/listinfo/opendnssec-develop

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBAgAGBQJLs0GNAAoJEA8yVCPsQCW5+PcH/3FYgDi3aWL7/nN/asIS2970
CfRlac0buja0k/K+CpM93L8OwXbDQpr/QFtaVDz1NJ1PHGMjGPPOnSdq1QdDZpQE
WETeicNzwSeMDVf7ZGvHdxBsquexYWfrnIIvMd/Sjx5J1jU92ZnWU04nsAfs6BYN
iHzTUS8T/JpYk7aVivYtHV09ZWeuQEQbbuqpsN9q44+T9T6aHUrVYh1XkTsZCBcl
/hRldSg+YIWiQS9gMU/8eT7M4iga6sjxMtO4PgF17PWchXM9WRjflkRXWTdv2LaI
crVeIj0/UkFIxw/GGxugR9SXm616kJsCycrdbxhTeaPhIXSH59wtH1npqO7vgaY=
=pYyY
-----END PGP SIGNATURE-----



More information about the Opendnssec-develop mailing list