Report information
The Basics
Id:
37732
Status:
open
Priority:
Medium/Medium
Queue:
bind9-public
People
Owner:
Nobody in particular
Requestors:
Cc:
AdminCc:
BugTracker
Version Fixed:
(no value)
Version Found:
(no value)
Versions Affected:
(no value)
Versions Planned:
(no value)
Priority:
(no value)
Severity:
S2 Normal
CVSS Score:
(no value)
CVE ID:
(no value)
Component:
(no value)
Area:
(no value)
Dates
Created:Wed, 05 Nov 2014 11:43:51 -0500
Updated:Fri, 07 Jul 2017 20:07:01 -0400
Closed:Not set

This bug tracker is no longer active.

Please go to our Gitlab to submit issues (both feature requests and bug reports) for active projects maintained by Internet Systems Consortium (ISC).

Due to security and confidentiality requirements, full access is limited to the primary maintainers.

History
  Wed, 05 Nov 2014 11:43:51 -0500 Petr Spacek <pspacek@redhat.com> - Ticket created
Subject: CDS & CDNSKEY integration with in-line signing
Date: Wed, 05 Nov 2014 17:43:45 +0100
To: bind-suggest@isc.org
From: Petr Spacek <pspacek@redhat.com>

Hello, I have seen that support for CDS and CDNSKEY resource record types was added to BIND 9.10. It would be great if in-line signing could automatically add/manage CDS/CDNSKEY records according to timestamps in the key files. I suspect that it could be a zone-knob like child-dnssec-sync: none | ds | dnskey | both; or something like that. Have a nice day! -- Petr Spacek @ Red Hat
  Wed, 05 Nov 2014 15:03:26 -0500 Evan Hunt <each@isc.org> - Correspondence added
CC: undisclosed-recipients: ;
Subject: Re: [ISC-Bugs #37732] CDS & CDNSKEY integration with in-line signing
Date: Wed, 5 Nov 2014 20:03:25 +0000
To: Petr Spacek via RT <bind-suggest@isc.org>
From: Evan Hunt <each@isc.org>

> I have seen that support for CDS and CDNSKEY resource record types was added > to BIND 9.10. > > It would be great if in-line signing could automatically add/manage > CDS/CDNSKEY records according to timestamps in the key files. This feature is on the roadmap for BIND 9.11.
Wed, 05 Nov 2014 15:03:26 -0500 The RT System itself - Status changed from 'new' to 'open'
Fri, 02 Jan 2015 12:14:16 -0500 Brian Conry <bconry@isc.org> - Severity S2 Normal added
Wed, 13 May 2015 13:44:38 -0400 Vicky Risk <vicky@isc.org> - Versions Planned 9.11.0 added
  Tue, 05 Jul 2016 18:24:19 -0400 Mark Andrews <marka@isc.org> - Correspondence added

On Wed Nov 05 06:43:51 2014, pspacek@redhat.com wrote: > Hello, > > I have seen that support for CDS and CDNSKEY resource record types was > added > to BIND 9.10. > > It would be great if in-line signing could automatically add/manage > CDS/CDNSKEY records according to timestamps in the key files. > > I suspect that it could be a zone-knob like child-dnssec-sync: none | > ds | > dnskey | both; or something like that. > > Have a nice day! 9.11 already has the ability to generate, publish and delete CDS and CDNSKEY based on timing. Both CDS and CDNSKEY records are generated / deleted at the same time. [-P sync date/offset] [-D sync date/offset] Mark
Tue, 12 Jul 2016 14:59:17 -0400 Vicky Risk <vicky@isc.org> - Versions Planned 9.11.0 deleted
Fri, 07 Jul 2017 20:07:01 -0400 Vicky Risk <vicky@isc.org> - Queue changed from #3 to bind9-public