ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity

[master] rndc nta

Browse Source 
3867.	[func]		"rndc nta" can now be used to set a temporary
			negative trust anchor, which disables DNSSEC
			validation below a specified name for a specified
			period of time (not exceeding 24 hours).  This
			can be used when validation for a domain is known
			to be failing due to a configuration error on
			the part of the domain owner rather than a
			spoofing attack. [RT #29358]
This commit is contained in:
Evan Hunt
2014-05-29 22:22:53 -07:00
parent fa6308bd57
commit 0cfb247368
34 changed files with 1636 additions and 43 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
bin/tests/system/dnssec/setup.sh
View File

@@ -25,6 +25,7 @@ test -r $RANDFILE || $GENRANDOM 400 $RANDFILE
cd ns1 && $SHELL sign.sh
echo "a.bogus.example. A 10.0.0.22" >>../ns3/bogus.example.db.signed
echo "b.bogus.example. A 10.0.0.23" >>../ns3/bogus.example.db.signed
cd ../ns3 && cp -f siginterval1.conf siginterval.conf
cd ../ns4 && cp -f named1.conf named.conf