On Sat, Oct 11, 2008 at 03:04:20PM -0700, Matthew Dillon wrote: > I think we need to default to crypto support: > > dnssec-keygen -a RSASHA1 -b 4096 -n ZONE DILLON > dnssec-keygen: failed to generate key DILLON/RSASHA1: built with no > crypto support >
Isn't this what pkgsrc is for? And along those lines, why are we even distributing a dns server and its tools? Clearly we need a resolver, but all the stuff covered by NO_BIND seems excessive. --Peter
pgpgDHQM9zZGW.pgp
Description: PGP signature
