On Aug 20, 2014, at 6:36 AM, Marco Davids (SIDN) <marco.dav...@sidn.nl> wrote: > Speaking of client-side validation, Bloodhound might also proof to be > worthwhile. I like it: > https://www.dnssec-tools.org/wiki/index.php/Bloodhound
Briefly looking at the source for libval (which Bloodhound uses), it does not appear 5011 is supported (unsurprisingly). Anyone know if there are any validator libraries that do support 5011? Or perhaps more realistically, has anyone come up with a daemon that updates “the trust anchor” (in the various configuration files in which it might be found) in the event of a root KSK roll? Thanks, -drc
signature.asc
Description: Message signed with OpenPGP using GPGMail