Regarding HMAC-SHA256 and RSASHA512 key generation algorithm in dnssec-keygen

Carsten Strotmann cas at
Fri Mar 21 13:50:52 UTC 2014

Hello Evan,

Evan Hunt <each at> writes:

> On Thu, Mar 06, 2014 at 11:34:45AM +0100, Carsten Strotmann wrote:
>> there could be a hard-link from a name like "tsig-keygen" to
>> "dnssec-keygen" which changes the type of key created to "-n HOST". That
>> would not require any change to the existing interface. Just an idea.
>> I'm not suggesting to change the existing interface, as it will break
>> existing stuff.
> FYI, the "tsig-keygen" command is now available in 9.10.0b2.  (Published
> to the FTP site, should be on the web site shortly.)

Nice, thank you. I will test it.

-- Carsten

More information about the bind-users mailing list