[Opendnssec-develop] Auditor support
Patrik Wallström
patrik.wallstrom at iis.se
Thu Feb 3 16:05:49 UTC 2011
On Feb 3, 2011, at 3:06 PM, Alex Dalitz wrote:
> Hi -
>
> I've been wondering about the status of the auditor for opendnssec. IMHO, it was extremely useful to have this as a development and test tool, while coming up to the version 1.0 release of ODS. It still has its uses now, for high risk environments.
>
> However, for some installations, it is a bit of a pain to install (what with Ruby support in package managers and all), and the value it adds can be limited.
>
> Is it really worth the pain? ;-)
>
> IMHO, we should change the default installation to NOT install the auditor (leaving it optional), instead of the current default.
>
> WDYT?
It is still a useful tool to use when testing a setup, and for high-value zones to do auditing on a regular basis. But yes, we should default to not installing the auditor, as I don't think most users will benefit from it. Packaging Ruby is also getting harder, looking at the recent Debian announcements (one of the current maintainers is stepping down).
But I am curious of how you see the auditor and future development work. Are you willing to having it adapted to the new adapter functionality? And is it possible, without too much work?
--
Patrik Wallström
Project Manager, R&D
.SE (Stiftelsen för Internetinfrastruktur)
E-mail: patrik.wallstrom at iis.se
Web: http://www.iis.se/
More information about the Opendnssec-develop
mailing list