about the effect of installing with "--without-openssl"

Anand Buddhdev anandb at ripe.net
Sat Aug 25 14:07:47 UTC 2018

On 25/08/2018 15:58, takahiro wrote:

Hi Takahiro,

> I would like someone to help me.
> I don't use DNSSEC, so I think I'm trying not to use OpenSSL.
> If when I install BIND9.11.4 with "./configure --without-openssl",
> what kind of functions can no be used other than DNSSEC?
> and are there risks if openssl is not used in BIND?

There are other features in BIND, such as TSIG keys, that require
cryptographic functions, so you still need openssl.

Compiling without openssl is a bad idea. Don't do it.


More information about the bind-users mailing list