[Opendnssec-user] Why XML?

Fredrik Pettai pettai at nordu.net
Wed May 22 13:07:01 UTC 2013


I've been thinking about the XML configuration files in OpenDNSSEC… 

One thing that struck me while having a discussion about different formats, is why OpenDNSSEC has it's configuration files in the XML format? I understood that (at least one of) the design idea(s) behind it, was that other provision systems that use OpenDNSSEC as a backend should be able to generate/rewrite configuration to OpenDNSSEC. Is that a reality today, or was it just a pipe dream? :-)

As an OpenDNSSEC user, the configuration is unnecessarily filled with (too) much information, making it less readable. As a package maintainer, having to depend on libxml2 is not something that is positive, due to all security vulnerabilities that comes with libxml2.
I do understand that it would take time that could be spent on other things to rewrite this, and I wouldn't suggest that this should be on the roadmap for OpenDNSSEC 1.x. But maybe OpenDNSSEC 2.x could add support for less complicated configuration syntax?

Does anybody else feel the same way?


More information about the Opendnssec-user mailing list