[Opendnssec-user] Null or Pass-thru signing algorithm?

Matthijs Mekking matthijs at NLnetLabs.nl
Sun Sep 4 11:46:31 UTC 2011


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Rick,

Currently, this feature is not yet incorporated.

Best regards,
  Matthijs

On 09/04/2011 09:30 AM, Rick van Rein wrote:
> Hello,
> 
> There has been talk of a "null" or "pass-through" algorithm
> for OpenDNSSEC in the past.  Switching between signed and
> unsigned mode would be a matter of changing signing policy,
> but all zone material would pass through OpenDNSSEC (with
> possible modifications to SOA serial numbers, I suppose).
> 
> I cannot find back in the 1.3.x documentation how this should
> be setup; has it been incorporated in this version?  It would
> dramatically simplify our setup -- making it more statically
> configured and less worries about SOA counting.
> 
> 
> Thanks,
>  -Rick
> _______________________________________________
> Opendnssec-user mailing list
> Opendnssec-user at lists.opendnssec.org
> https://lists.opendnssec.org/mailman/listinfo/opendnssec-user

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQEcBAEBAgAGBQJOY2UXAAoJEA8yVCPsQCW5F3MIAMvXufkOEsKaEFRC74S8XFI3
gHJlj7Lo31+5fHDlH+8qXO93Y4J5G9zm4YkiKRlxo8QufUxrlPpgfEGR+vdJH7F8
y4Yc/JiUXAS8XaskKb20PVoZ7MuV6zm5zkrTJt2ds7KnFc2lWiHz3xttM+OVQGbr
pkOMOYjW22VoYk1t090/fau4TNV1RwhgrVUgpXuxJifMzSE+Tbt8vHvOUxtcDndY
D3scrkNc0iDJeub0uA1FZ54dB6fDRB0GmHcqo45DfTMTIqqPIZ2cuFqxF0GIskqv
A0gglfGa5zXCGDV5qJGwD2A8tG1iH2JaJ0DCaP3RjmJJCmRZFFgR27dfPONsu9o=
=iZCk
-----END PGP SIGNATURE-----



More information about the Opendnssec-user mailing list