23 Říj
2013
23 Říj
'13
11:35
[ Quoting <johani(a)johani.org> in "Re: [knot-dns-users] Knot DNS, DNS ..."
]
On Oct 21, 2013, at 22:39 , Matthias-Christian Ott
wrote:
But, this said, I really, really don't want this to be read as a complaint.
I really like Knot-DNS and have great hopes for it.
+1 (and also to the rest you wrote).
What I would like to see (personal opinion, I'm not asking for these
features in Knot), is a seperate key-handling entity, just like
opendnssec, but without the signing part. In my theoretical and perfect
world I could use something like this to make keyrollovers happen in
my cron-based signing setup. I.e. the key-handling binary just drops
some keys in a directory which get picked up by dnssec-signzone and
then given to my nameserver binary.
Grtz,
--
Miek Gieben
PGP 3880D0F6