upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-05-28 04:34:54 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
bind9/bin
History
Michał Kępień 72c201733c Do not check SEP bit for mirror zone trust anchors 
When a mirror zone is verified, the 'ignore_kskflag' argument passed to
dns_zoneverify_dnssec() is set to false.  This means that in order for
its verification to succeed, a mirror zone needs to have at least one
key with the SEP bit set configured as a trust anchor.  This brings no
security benefit and prevents zones signed only using keys without the
SEP bit set from being mirrored, so change the value of the
'ignore_kskflag' argument passed to dns_zoneverify_dnssec() to true.
2019-02-14 11:03:35 +01:00
..
check prep 9.13.6 2019-02-06 22:13:05 +00:00
confgen prep 9.13.6 2019-02-06 22:13:05 +00:00
delv prep 9.13.6 2019-02-06 22:13:05 +00:00
dig error out if there are extra command line options 2019-02-07 19:49:44 +11:00
dnssec prep 9.13.6 2019-02-06 22:13:05 +00:00
named prep 9.13.6 2019-02-06 22:13:05 +00:00
nsupdate prep 9.13.6 2019-02-06 22:13:05 +00:00
pkcs11 prep 9.13.6 2019-02-06 22:13:05 +00:00
plugins prep 9.13.6 2019-02-06 22:13:05 +00:00
python adjust style, match test to other tests 2019-02-07 16:53:46 -08:00
rndc prep 9.13.6 2019-02-06 22:13:05 +00:00
tests Do not check SEP bit for mirror zone trust anchors 2019-02-14 11:03:35 +01:00
tools prep 9.13.6 2019-02-06 22:13:05 +00:00
win32/BINDInstall Bump Windows minimum target environment to _WIN32_WINNT_WIN8/NTDDI_WIN8 values 2019-01-30 09:37:38 +01:00
Makefile.in name change from "hook modules" to "plugins" 2018-12-06 10:36:50 -08:00