upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-05-28 04:34:54 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
bind9/lib
History
Michał Kępień 72c201733c Do not check SEP bit for mirror zone trust anchors 
When a mirror zone is verified, the 'ignore_kskflag' argument passed to
dns_zoneverify_dnssec() is set to false.  This means that in order for
its verification to succeed, a mirror zone needs to have at least one
key with the SEP bit set configured as a trust anchor.  This brings no
security benefit and prevents zones signed only using keys without the
SEP bit set from being mirrored, so change the value of the
'ignore_kskflag' argument passed to dns_zoneverify_dnssec() to true.
2019-02-14 11:03:35 +01:00
..
bind9 prep 9.13.6 2019-02-06 22:13:05 +00:00
dns Do not check SEP bit for mirror zone trust anchors 2019-02-14 11:03:35 +01:00
irs prep 9.13.6 2019-02-06 22:13:05 +00:00
isc prep 9.13.6 2019-02-06 22:13:05 +00:00
isccc prep 9.13.6 2019-02-06 22:13:05 +00:00
isccfg prep 9.13.6 2019-02-06 22:13:05 +00:00
ns prep 9.13.6 2019-02-06 22:13:05 +00:00
samples Add @OPENSSL_LIB@ to Windows project files as needed 2018-08-10 16:45:00 +02:00
win32/bindevt address win32 build issues 2018-05-22 16:32:21 -07:00
.gitignore added gitignore, removed cvsignore 2012-03-03 23:10:05 -08:00
Kyuafile link in lib/isccc/tests/Kyuafile 2018-11-13 07:23:36 +11:00
Makefile.in remove lib/tests as nothing uses it anymore 2018-03-09 14:12:50 -08:00