A few conceptual question about dnssec.
Miek Gieben
miek at miek.nl
Fri Feb 17 19:11:39 UTC 2012
[ Quoting <gaurav.kansal at nic.in> at 00:36 on Feb 18 in "RE: A few conceptual..." ]
> Firstly, where do we get the public key for the DS records?
>
> Can you clarify your question???
>
>
>
> Second, why do I get multiple DS records as response? –
>
> You will always get a 2 DS Records in response. One for SHA-1 and second for
> SHA-256.
That completely depends on what is configured in the zone.
Perhaps this will help:
http://nlnetlabs.nl/publications/dnssec_howto/
grtz Miek
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: Digital signature
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20120217/1efe1401/attachment.bin>
More information about the bind-users
mailing list