managed-keys vs trust-anchors
Evan Hunt
each at isc.org
Wed Jan 4 20:46:24 UTC 2023
On Wed, Jan 04, 2023 at 03:25:10PM -0500, Bob McDonald wrote:
> Thanks Evan and Ondrej. I'll let the folks at FreeBSD know also. Their
> bind packages still include that file.
The file itself is harmless. But we used to say it was best practice to
check for updates at the ISC website before turning on DNSSEC validation,
and we no longer consider that to be worthwhile advice. Just keep your
packages up to date and you'll be fine.
--
Evan Hunt -- each at isc.org
Internet Systems Consortium, Inc.
More information about the bind-users
mailing list