BIND 9.10.0b1 is now available

Doug Barton dougb at
Mon Mar 17 19:36:32 UTC 2014

On 03/17/2014 12:29 PM, Mathieu Arnold wrote:
> Hum, so, it will also use pkcs11 for dnssec validation too ? (Sorry if this
> seems a silly question.)

HSMs are typically an auth-only tool, although I suppose that in a 
super-high-security environment that they could be justified for 
validation ... it would be interesting to see a requirements doc on what 
the HSM would need to provide to do that.


More information about the bind-users mailing list