named in BIND 9.9.3-P1 needs libpkcs11.so ?
Evan Hunt
each at isc.org
Thu Jun 27 04:56:24 UTC 2013
> This build of OpenSSL 1.0.1e was fully tested and passed all tests so I am thinking
> that an option to the build of bind is the issue here. Probably "--with-pkcs11" .
>
> If I don't have that option am I totally shafted for DNSSEC ?
You don't need --with-pkcs11 unless you're planning to use a cryptographic accelerator
or hardware service module, and you'd have had to build a special version of OpenSSL
for that. Remove it from the configure options and you should be fine.
--
Evan Hunt -- each at isc.org
Internet Systems Consortium, Inc.
More information about the bind-users
mailing list