23 Říj
2013
23 Říj
'13
10:50
Hello Johan,
So, while I'm well aware that this is not what is
currently being planned
for Knot-DNS, this is my view on the topic:
I quite understand your motivation and your arguments are very reasonable.
Hovever some people just want all-in-one solution for DNS and DNSSEC, which
will work out of the box - that's our current goul. I believe that it won't
change anything about a future possiblity to use Knot DNS as you do it now in
this master-signer-slave configuration while keeping the same robustness.
Anyway, thank you for the extensive rationale. We will definitelly think about
the separate "signer".
Jan