On 11/2/2010 8:36 AM, Brian J. Murrell wrote: > Alan Clegg <aclegg <at> isc.org> writes: >> > > Hi Alan, > >> There isn't a chain of signed DS records that lead from a trust anchor >> to the thing that you are trying to resolve. > > I guess I'm going to have to learn a bit more about DNSSEC in order to parse > that. :-) > > Are there any good tutorials on the mechanics (as opposed to howtos about > setting up and configuring trusted zones, etc.) of DNSSEC? i.e. Alice and > Bob > examples.
Well, there is a presentation that I gave at NANOG-50..
http://bit.ly/9H28oT
that gives a relatively clear (I hope) explanation of what is going on
in the DNSSEC validation process.
AlanC
signature.asc
Description: OpenPGP digital signature
_______________________________________________ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
