A few conceptual question about dnssec.
dE .
de.techno at gmail.com
Sat Mar 3 07:17:37 UTC 2012
On 02/18/12 00:36, Gaurav kansal wrote:
>
> Firstly, where do we get the public key for the DS records?
>
> Can you clarify your question???
>
>
>
> Second, why do I get multiple DS records as response? --
>
> You will always get a 2 DS Records in response. One for SHA-1 and
> second for SHA-256.
>
I was reading the RFCs, but according to that, there's no provision of
SHA-256. According to RFC 4034, 1 means MD5 and 2 means Diffie-Hellman
(appendix A1)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20120303/7e14018e/attachment.html>
More information about the bind-users
mailing list