Over the first half of 2010, ICANN/IANA plan to sign the root zone [1]. The DNSSEC signature will use SHA256 hashes, which are not supported in older but common versions of BIND. If you run BIND 9.6.0 or 9.6.0P1, you may have issues with these signatures. The bug was fixed in BIND 9.6.1. From the ISC.org mailing list:
[1] http://www.icann.org/en/announcements/announcement-2-09oct08-en.htm
------ |
Johannes 4511 Posts ISC Handler Dec 15th 2009 |
Thread locked Subscribe |
Dec 15th 2009 1 decade ago |
Sign Up for Free or Log In to start participating in the conversation!