DNSSEC mailing list

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: dnssec@cafax.se
From: Miek Gieben <miekg@atoom.net>
Date: Wed, 18 Dec 2002 21:46:43 +0100
Content-Disposition: inline
Mail-Followup-To: dnssec@cafax.se
Sender: owner-dnssec@cafax.se
User-Agent: Vim/Mutt/Linux
Subject: dnssec resolver

Hello,

I've made some improvements in the code. The most important change is that there
is a resolvsec.conf. This file lists all the secure entry points together with
their nameserver(s). I've made the decision to use DS record in this file in
stead of key records. The first reason is that I think DS records are somewhat
easier to handle than key records. The second, related, reason is that this
makes the parsing of the file a lot simpler.

The resolving parts haven't changes much.

There is a little util: key2ds.pl <key filename> , which generates a DS record
from a KEY record. This DS can then be used in resolvsec.conf.

Short term todo list:
- handling NXT records
- finishing the resolving 
- code cleanup

I'm still very interested in feedback,

grtz  Miek


--
:wq!

rel.tgz

Follow-Ups:
- Re: dnssec resolver
  - From: Jakob Schlyter <jakob@crt.se>

Prev by Date: Re: links about dns and DDOS
Next by Date: Re: dnssec resolver
Prev by thread: Re: links about dns and DDOS
Next by thread: Re: dnssec resolver
Index(es):
- Date
- Thread

Home | Date list | Subject list