Mailinglist Archive: opensuse-features (411 mails)

< Previous Next >
[openFATE 310516] YaST2 DNSSEC
Feature changed by: Matthias Eckermann (mge1512)
Feature #310516, revision 5

- openSUSE-11.4: Evaluation by product manager
+ openSUSE-11.4: Evaluation by project manager
Requester: Important

Info Provider: (Novell)
Requested by: Peter Bowen (pzb)
Product Manager: (Novell)
Project Manager: (Novell)
Technical Contact: (Novell)
Partner organization:

With the root zone now being signed, DNSSEC is finally seeing adoption.
It would be really nice for YaST to be able to generate a signed zone.

#2: Peter Bowen (pzb) (2010-09-13 17:00:43)
This is actually a couple of requests rolled into one. I didn't realize
that when I initially entered it.
1) Enable DNSSEC validation in the default BIND configuration - Add
root zone key to the default configuration
2) Enable easy creation of signed zones
3) Optionally add support in applications (e.g. Firefox) for displaying
The business case revolves around providing a modern security aware
distribution. Until June of 2010, DNSSEC was not deployed widely, but
with the root zone signed, almost all TLDs have either rolled out
DNSSEC or announced plans to do so within approximately one year. I
expect to see customers requesting this once .com signs their zone.

openSUSE Feature:

< Previous Next >
This Thread
  • No further messages