mirror of
https://github.com/isc-projects/bind9.git
synced 2026-02-25 10:59:35 -05:00
49 lines
893 B
Text
49 lines
893 B
Text
/*
|
|
* Copyright (C) 2016 Internet Systems Consortium, Inc. ("ISC")
|
|
*
|
|
* This Source Code Form is subject to the terms of the Mozilla Public
|
|
* License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
* file, You can obtain one at http://mozilla.org/MPL/2.0/.
|
|
*/
|
|
|
|
policy keysize_rsa {
|
|
algorithm rsasha1;
|
|
coverage 1y;
|
|
roll-period zsk 3mo;
|
|
pre-publish zsk 2w;
|
|
post-publish zsk 2w;
|
|
roll-period ksk 1y;
|
|
pre-publish ksk 1mo;
|
|
post-publish ksk 2mo;
|
|
keyttl 1h;
|
|
key-size ksk 2048;
|
|
key-size zsk 1024;
|
|
};
|
|
|
|
policy keysize_dsa {
|
|
algorithm dsa;
|
|
coverage 1y;
|
|
key-size ksk 2048;
|
|
key-size zsk 1024;
|
|
};
|
|
|
|
zone good_rsa.test {
|
|
policy keysize_rsa;
|
|
};
|
|
|
|
zone bad_rsa.test {
|
|
policy keysize_rsa;
|
|
key-size ksk 511;
|
|
};
|
|
|
|
zone good_dsa.test {
|
|
policy keysize_dsa;
|
|
key-size ksk 1024;
|
|
key-size zsk 768;
|
|
};
|
|
|
|
zone bad_dsa.test {
|
|
policy keysize_dsa;
|
|
key-size ksk 1024;
|
|
key-size zsk 769;
|
|
};
|