ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity

3116. [func] New 'dnssec-update-mode' option controls updates

Browse Source 
of DNSSEC records in signed dynamic zones.  Set to
			'no-resign' to disable automatic RRSIG regeneration
			while retaining the ability to sign new or changed
			data. [RT #24533]
This commit is contained in:
Evan Hunt
2011-05-23 20:10:03 +00:00
parent 86e92d6a9a
commit bfe32d08c5
12 changed files with 202 additions and 34 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
bin/tests/system/dnssec/ns3/named.conf
View File

@@ -15,7 +15,7 @@
* PERFORMANCE OF THIS SOFTWARE.
*/
/* $Id: named.conf,v 1.47 2011/05/19 00:31:57 smann Exp $ */
/* $Id: named.conf,v 1.48 2011/05/23 20:10:02 each Exp $ */
// NS3
@@ -229,4 +229,11 @@ zone "expiring.example" {
file "expiring.example.db.signed";
};
zone "nosign.example" {
type master;
allow-update { any; };
dnssec-update-mode no-resign;
file "nosign.example.db.signed";
};
include "trusted.conf";