Subject: Re: bind 9 and dnssec
To: Christos Zoulas <christos@astron.com>
From: Steven M. Bellovin <smb@cs.columbia.edu>
List: current-users
Date: 05/06/2006 08:19:51
On Sat, 6 May 2006 05:36:37 +0000 (UTC), christos@astron.com (Christos
Zoulas) wrote:
> In article <445BC5BD.90201@isc.org>,
> >
> >I noticed we are building bind 9 without DNSSEC support (that is,
> >missing linking to OpenSSL libraries)
> >
> >Is there a reason we're not doing this? If so, what is it? If not, I
> >will add it.
>
> I think the code is in flux. In 9.4.0-alpha2-3 the validator has
> been re-written. I would wait until we integrate 9.4.0 before
> enabling it.
>
Is there some clean way -- say, a mk.conf entry -- that I could try to
enable it on my systems?
--Steven M. Bellovin, http://www.cs.columbia.edu/~smb