Hello,Doug.
Our(My) goal is to build a secure server and to eliminate useless work for
BIND and OPENSSL vulnerability.
= Improved reliability and cost down.
so we have a policy that we shuoud not use functions that we don't use as
much as possible.
(ex. DNSSEC,TSIG etc.
and we have other reason
On 08/26/2018 07:30 PM, takahiro wrote:
That's why I want to know the effect of installing with "without-openssl".
What specifically are you trying to accomplish by compiling without openssl?
___
Please visit https://lists.isc.org/mailman/listinfo/bin
Hi,there.
>In all versions of BIND up to 9.12, it is possible to compile BIND without
>openssl by using "configure --without-openssl".
last week,I could install BIND9.11.4-P1 by using "configure
--without-openssl" in my test machine.
It seems that there is no problem with ldd `which named` ,rnd
On Sat, Aug 25, 2018 at 10:44:22PM -0500, takahiro wrote:
"If I don't use DNSSEC,TSIG,DNS COOKIE, It' no problem that compile without
openssl."
Is my understanding correct?
On 26.08.18 08:58, Evan Hunt wrote:
In all versions of BIND up to 9.12, it is possible to compile BIND without
openssl by
On Sat, Aug 25, 2018 at 10:44:22PM -0500, takahiro wrote:
> "If I don't use DNSSEC,TSIG,DNS COOKIE, It' no problem that compile without
> openssl."
> Is my understanding correct?
In all versions of BIND up to 9.12, it is possible to compile BIND without
openssl by using "configure --without-openss
Thank you for many replies.
But I can't still understand.
"If I don't use DNSSEC,TSIG,DNS COOKIE, It' no problem that compile without
openssl."
Is my understanding correct?
--
Sent from: http://bind-users-forum.2342410.n4.nabble.com/
___
Please vis
On Sat, Aug 25, 2018 at 06:44:01PM +0200, Anand Buddhdev wrote:
> TSIG isn't the only thing that needs cryptographic functions. BIND also
> had support for DNS COOKIES (RFC 7873), which also need openssl. I would
> say openssl is not optional, so just don't compile without it.
>
> I don't even kno
On 25/08/2018 17:27, takahiro wrote:
Hi Takahiro,
>> There are other features in BIND, such as TSIG keys, that require
>> cryptographic functions, so you still need openssl.
> Now I don't use TSIG keys.
> Maybe rndc ,too?
> (When I found out the word "cryptographic", rndc was displayed.)
>
>> C
Hi Annand
I appreciate your quick reply.
>There are other features in BIND, such as TSIG keys, that require
>cryptographic functions, so you still need openssl.
Now I don't use TSIG keys.
Maybe rndc ,too?
(When I found out the word "cryptographic", rndc was displayed.)
>Compiling without openss
On 25/08/2018 15:58, takahiro wrote:
Hi Takahiro,
> I would like someone to help me.
>
> I don't use DNSSEC, so I think I'm trying not to use OpenSSL.
>
> If when I install BIND9.11.4 with "./configure --without-openssl",
> what kind of functions can no be used other than DNSSEC?
> and are ther
I would like someone to help me.
I don't use DNSSEC, so I think I'm trying not to use OpenSSL.
If when I install BIND9.11.4 with "./configure --without-openssl",
what kind of functions can no be used other than DNSSEC?
and are there risks if openssl is not used in BIND?
I tried finding out the a
11 matches
Mail list logo
