Package: dnssec-tools Version: 1.7-3 Severity: minor Hi,
The current configuration shipped by the package doesn't pass the dtconfchk command, it returns errors: invalid algorithm: "rsasha256"; can't check key-length values usensec3 flag has unrecognized value () nsec3optout flag has unrecognized value () NSEC3 iterations must be positive () /etc/dnssec-tools/dnssec-tools.conf is invalid: 4 errors When using dtinitconf to generate a default configuration file we can see that there are some differences that I think could be reconciled. Adding the nsec3 related options fix the related errors, the rsasha256 error is still happening even with the default configuration file generated by dtinitconf. Cheers Laurent Bigonville -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
