DNSSEC made simple, is this possible?

Evan Hunt each at isc.org
Wed Jan 11 18:17:41 UTC 2012


> Next great thing would be for ISC to support the Soft-HSM that
> OpenDNSSEC uses. I believe that this would make the step of moving to a
> real hardware HSM a lot easier (if necessary).

softhsm works with BIND 9.  It's cumbersome--you need special
configure options and and a patched version of openssl--but it
does work.

-- 
Evan Hunt -- each at isc.org
Internet Systems Consortium, Inc.



More information about the bind-users mailing list