Re: "unprotected key" with DNSSEC

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

From: SM <sm_at_resistor.net>
Date: Wed, 31 Aug 2016 13:48:21 -0700

Hi Benny,
At 08:19 31-08-2016, Benny Pedersen wrote:
>what does opendkim do if that is not set ?

DNSSEC verification requires a Trust Anchor. If the "TrustAnchor" is
not set, you will see the same behaviour as the one which Jim reported.

>and now even more questions from me, what does opendkim do when the
>anchor file is renewed, will it self reload new file content ?

I haven't read that part of the code recently. It is not optimal to
do a check as the file contents rarely change.

Regards,
-sm
Received on Wed Aug 31 2016 - 20:49:14 PST

This archive was generated by hypermail 2.3.0 : Wed Aug 31 2016 - 20:54:01 PST