[Opendnssec-develop] [OpenDNSSEC] #217: KASP accepts algorithm 2 for NSEC3 records
OpenDNSSEC
owner-dnssec-trac at kirei.se
Thu Feb 10 10:07:25 UTC 2011
#217: KASP accepts algorithm 2 for NSEC3 records
-----------------------------------------------------+----------------------
Reporter: Sebastian Castro <sebastian@…> | Owner: matthijs
Type: defect | Status: new
Priority: major | Component: Signer
Version: 1.2.0 | Keywords:
-----------------------------------------------------+----------------------
We set NSEC3.Hash.Algorithm=2 in a policy, the KASP was correctly
validated and the signer generated NSEC3 and NSEC3PARAM records with
algorithm 2 but the hashes are SHA-1. According to IANA, algorithm 2
hasn't been assigned yet.
--
Ticket URL: <http://trac.opendnssec.org/ticket/217>
OpenDNSSEC <http://www.opendnssec.org/>
OpenDNSSEC
More information about the Opendnssec-develop
mailing list