June 2010 Archives

BIND 9.7.2 and automatic DNSSEC signing

04 Jun 2010

Michael Graff

BIND 9.7.0 and 9.7.1

BIND 9.7.0 introduced automatic in-server signature re-freshing and automatic key rollover. This allows BIND 9.7, if provided with the DNSSEC private key files, to sign records as they are added to the zone, or as the signatures need to be refreshed. This refresh happens periodically to spread out the load on the server and to even out zone transfer load.

mgraff's blog
5 comments
Read more

Towards a DNSCERT Definition

17 Jun 2010

by Paul Vixie

To mix metaphors, my e-mail has been ringing off the hook after my previous article ("Perspectives on a DNS-CERT") and I've had to think deep and difficult thoughts about what we really mean by DNSCERT, and whether DNS-OARC really has the capability or really can grow the capability to operate such a thing. I've had some discussions with ICANN and with members of the DNS-OARC board and staff, and it's time I checkpointed the current state of my thinking about all this.

vixie's blog
1 comment
Read more

June 2010 Archives

BIND 9.7.2 and automatic DNSSEC signing

BIND 9.7.0 and 9.7.1

Towards a DNSCERT Definition

monthly archive

recent blog posts

01 Jun 2012

21 May 2012

02 Mar 2012

26 Jan 2012

21 Nov 2011