Re: where is the DNSSEC root key?

To: Chris Knadle <Chris.Knadle@coredump.us>
Cc: debian-devel@lists.debian.org
Subject: Re: where is the DNSSEC root key?
From: Peter Samuelson <peter@p12n.org>
Date: Fri, 5 Oct 2012 11:23:24 -0500
Message-id: <[🔎] 20121005162324.GB4151@p12n.org>
In-reply-to: <[🔎] 201210041510.02083.Chris.Knadle@coredump.us>
References: <[🔎] CAJU7zaKuy9Wz5i0QtWed0noPnJuZx+yK6wWSFX7pywKdSq4zKA@mail.gmail.com> <[🔎] 201210041510.02083.Chris.Knadle@coredump.us>

[Chris Knadle]
> However since all DNS servers are generally meant to use port 53, I
> think it's unlikely to install more than one DNS server locally, so
> I'm not sure if doing this makes sense from a packaging perspective.
> [I can see how it does from an administration perspective.]

It's actually not uncommon to run, e.g., rbldnsd on a nonstandard port,
and a full nameserver on port 53, which forwards queries to it.  Now
that's not directly related, as rbldnsd will never need to know the
DNSSEC root keys ... but I'm just saying.  It is quite possible that
somebody will want to run a recursive nameserver and an authoritative
nameserver, different packages, on the same host.  I wouldn't bother
with that, mind you.

Peter

Reply to:

Follow-Ups:
- Re: where is the DNSSEC root key?
  - From: Peter Palfrader <weasel@debian.org>

References:
- where is the DNSSEC root key?
  - From: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
- Re: where is the DNSSEC root key?
  - From: Chris Knadle <Chris.Knadle@coredump.us>

Prev by Date: Bug#689711: ITP: libarray-iterator-perl -- simple class to provide iterators over Perl arrays
Next by Date: Bug#689736: ITP: pd-fftease -- live spectral sound processors for Pd
Previous by thread: Re: where is the DNSSEC root key?
Next by thread: Re: where is the DNSSEC root key?
Index(es):
- Date
- Thread