On 8/06/11 11:38 PM, "Christof Meerwald" wrote:
>On Wed, 08 Jun 2011 18:21:14 +1200, Craig Whitmore wrote:
>[...]
>> Can someone help why the slave is failing=8A
>
>I think one of the DNSSEC records is being truncated on the slave as
>it exceeds 256 bytes - you might need to update the database
On Wed, 08 Jun 2011 18:21:14 +1200, Craig Whitmore wrote:
[...]
> Can someone help why the slave is failing=8A
I think one of the DNSSEC records is being truncated on the slave as
it exceeds 256 bytes - you might need to update the database schema on
the slave to allow for longer records.
> I can
Hi there.
I am testing powerdnssec with one of my domains spam.co.nz
I have 2 PowerDNSSEC servers set up one as master and one as slave. I have
used the normal powerdns for a long time with no problems
Both set up using gmysql backends (one on each) ,adding the data into the
master mysql databas
On Fri, Jan 07, 2011 at 01:35:59PM +0100,
Leen Besselink wrote
a message of 58 lines which said:
> I would expect it to need authentication tokens too. :-)
In almost all registries, this is allowed only to registered
registrars. So, even if someone were willing to add an EPP client to
PowerDN
Dear PowerDNS Community,
With the help of many of you, we've now brought 'PowerDNSSEC' to the point
where it is in light production. Several of our important domains have
already been migrated to the PowerDNS Authoritative Server 3.0 prereleases.
Several PowerDNS users have done the same with the
On Fri, Jan 07, 2011 at 11:39:59AM +0100, bert hubert wrote:
> On Fri, Jan 07, 2011 at 11:24:12AM +0100, Leen Besselink wrote:
>
> > But their is one part I'm missing a way to hook up an EPP-client for
> > sending the DS-record to the parent-zone.
>
> This could be added to pdnssec perhaps - is t
On Fri, Jan 07, 2011 at 11:24:12AM +0100, Leen Besselink wrote:
> A (possibly hidden) supermaster which does all the DNSSEC signing and
> the superslaves which only do
> zone-trasfers and no online DNSSEC-signing but do understand enough of
> the protocol to be able to serve it.
This scenario is s
On 01/06/2011 08:00 PM, bert hubert wrote:
> On Thu, Jan 06, 2011 at 11:55:24AM -0500, Mathew Hennessy wrote:
>> Excellent! BTW, can PowerDNSSEC operate in the following way as one would
>> expect:
>>
>> PowerDNS supermaster which has DNSSEC RRs but doesn't do DNSSEC (aka
>> traditional PowerDNS)
would be an excellent "way into dnssec".
This wouldn't require any change to the existing (non-dnssec) powerdns setups,
and would allow us to test with "real" things, easily migrate single domains to
a dnssec setup (just change the nameservers), rollback when needed to the old
and tested setup
On Thu, Jan 06, 2011 at 11:55:24AM -0500, Mathew Hennessy wrote:
> Excellent! BTW, can PowerDNSSEC operate in the following way as one would
> expect:
>
> PowerDNS supermaster which has DNSSEC RRs but doesn't do DNSSEC (aka
> traditional PowerDNS) providing data to PowerDNS slaves. If you use t
Dear PowerDNS Community,
With the help of many of you, we've now brought 'PowerDNSSEC' to the point
where it might make sense for you to trial it on test domains. We expect to
make move some of our own important domains over to PowerDNSSEC early next
week. PowerDNS.COM underlies the commercial DN
On 06/24/2010 03:08 PM, Michael Braunoeder wrote:
Hi,
Hi,
I'm currently evaluating the PowerDNSSEC implementation and found 2
issues:
As no person which is more knowledgable answered your question, I
thought I would answer with what I know.
-) Is it possible to disable the signing-on-d
Hi,
I'm currently evaluating the PowerDNSSEC implementation and found 2 issues:
-) Is it possible to disable the signing-on-demand feature? I want the
powerdns to act as slave to a hidden-master which does the signing of
the domain, and the powerdns should just serve the signed zone (without
Hi everybody,
I'll be part of the 'DNSSEC Workgroup' over at ICANN in Brussels this coming
week. There, I will present 'PowerDNSSEC' plus our vision of DNSSEC on the
resolver side of large ISPs.
More details can be found on http://brussels38.icann.org/node/12491 and you
can even join in virtually
Dear PowerDNS people,
On http://wiki.powerdns.com/trac/wiki/PDNSSEC you will find the newest
version of PowerDNS with DNSSEC support built in. This version is
tentatively called 'PowerDNS Authoritative Server 3.0-pre', to signify its
pre-release status, but also to make it clear that DNSSEC will b
15 matches
Mail list logo
