DJB and root ns server dnssec signing
krad
kraduk at googlemail.com
Mon Apr 19 14:59:40 UTC 2010
On 19 April 2010 15:56, John Levine <johnl at iecc.com> wrote:
> I also use djbdns and don't expect any particular problems, since you
> don't get EDNS responses if you don't make EDNS queries.
>
> There's a one-line patch I can probably dig up which makes dnscache
> accept oversized responses. Dunno if it would help, but it's unlikely
> to hurt.
>
> R's,
> John
>
I think watch i really need to do is find a root ns that is already serving
signed records then limit djb to that, and then i can do some testing. My
gut feeling is that it will be ok, but its no where near 90% let alone 100%
which is why im nervous. PR nightmare if it does go wrong
More information about the freebsd-questions
mailing list