[Opendnssec-develop] Review of JIRA issues
Matthijs Mekking
matthijs at nlnetlabs.nl
Mon May 13 09:06:25 UTC 2013
On 05/12/2013 05:56 PM, Rick van Rein (OpenFortress) wrote:
> Hello Sara,
>
>> OPENDNSSEC-329 RFC 6725 deprecates the use of RSA/MD5 Unassigned
>
> That's just something for the operator to implement, and for us to avoid in default configurations and perhaps to add to documentation?
I have added that, if we should remove RSA/MD5 from OpenDNSSEC (first
announce it of course that we will deprecate it at foo time). For
example, Unbound will already consider RRsets signed with this algorithm
to be insecure.
I think the conclusion was to keep it as it is for now.
>
>> OPENDNSSEC-328 man pages for configuration xml files Unassigned
>
> If Roland agrees, I should be able to write those. I'll ask him when he is available again in two weeks.
>
>> OPENDNSSEC-232 Handle DNS views Unassigned
>
> IMHO, an important shortcoming in current OpenDNSSEC; specifically because setting up a 2nd system for another view is quite a big thing for OpenDNSSEC. I would like to nominate this one.
>
> -Rick
>
> _______________________________________________
> Opendnssec-develop mailing list
> Opendnssec-develop at lists.opendnssec.org
> https://lists.opendnssec.org/mailman/listinfo/opendnssec-develop
>
More information about the Opendnssec-develop
mailing list