Good morning,
we try to use in our zone files for easy including of new sub domains.
While it worked on my test system, in production we get either NXDOMAIN or
SERVFAIL,
both use bind 9.11.2 from the distro. Level 10 debug with all possible logs
enabled did gave no answer.
Maybe someone on this
David Alexandre M. de Carvalho wrote:
>
A few hints and tips...
> my named.conf already has the following:
>
> dnssec-enable yes;
You don't need this because it's on by default :-)
> dnssec-lookaside auto;
You want to remove this because the DNSSEC lookaside validation service
> On 2 Apr 2020, at 17:58, Warren Kumari wrote:
>
> If you are running an older machine and older kernel, the
> /dev/random source is blocking
Then just use /dev/urandom, both random and urandom are CSPRNG.
Ondrej
--
Ondřej Surý
ond...@isc.org
signature.asc
Description: Message signed with
On Thu, Apr 2, 2020 at 11:14 AM David Alexandre M. de Carvalho
wrote:
>
> Hello, good afternoon.
> My first post in this list :)
>
> I'm running BIND Chroot for many years (currently version 9.8.2) on some old
> hardware running Oracle Linux 6.
> I believe it was last year when I was reading abou
Hello, good afternoon.
My first post in this list :)
I'm running BIND Chroot for many years (currently version 9.8.2) on some old
hardware running Oracle Linux 6.
I believe it was last year when I was reading about implementing DNSSEC, and I
think I've even tried to generate a
keypair in the slo
5 matches
Mail list logo
