Re: WARNING: debian11 + bind-9.16.15 + dnssec-policy in options{} = crashes

On Mon, 16 Aug 2021, raf wrote: > If like me, you've been eagerly awaiting debian11 to > get bind-9.16.15, which finally lets you implement > DNSSEC extremely easily on debian stable, I have a > warning. And I have another: make sure your system clock is correct. DNSSEC will fail if system time

WARNING: debian11 + bind-9.16.15 + dnssec-policy in options{} = crashes

Hi, If like me, you've been eagerly awaiting debian11 to get bind-9.16.15, which finally lets you implement DNSSEC extremely easily on debian stable, I have a warning. Bind has a dnssec-policy {} stanza for defining your own policy if you're feeling adventurous, but there's also a default