Nick Tait via bind-users wrote:
> Hi Björn.
>
> Not sure if my (late) reply is any use to you, but yes my understanding
> is that you could use localhost as the parental agent in the cases where
> (a) the local machine also hosts the parent zone, or (b) it is a
> recursive resolver. In the
Hi Björn.
Not sure if my (late) reply is any use to you, but yes my understanding
is that you could use localhost as the parental agent in the cases where
(a) the local machine also hosts the parent zone, or (b) it is a
recursive resolver. In the latter case the DNSSEC responses would be
Hello, I'm trying to configure automatic KSK (or CSK) rollover. I'm
confused about how to poll securely for DS records.
Section 5.1.2.1 of the BIND 9 Administrator Reference Manual says:
| [parental-agents] needs to be a trusted server, because BIND does not
| validate the response.
and section
3 matches
Mail list logo
