Mirrors/coredns
1
0
Fork 0
mirror of https://github.com/coredns/coredns.git synced 2025-11-02 18:23:25 -05:00
Code Issues Packages Projects Releases Wiki Activity

middleware/dnssec

Browse Source 
Add warning about in memory keys and the impossibilty to extract them.
This commit is contained in:
Miek Gieben
2016-08-14 07:30:41 -07:00
parent 3b7b9b49d5
commit e85a8260e3
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
middleware/dnssec/README.md
View File

@@ -19,6 +19,9 @@ RSA).
A signing key can be specified by using the `key` directive. A signing key can be specified by using the `key` directive.
WARNING: when a key is generated there is currently no way to extract any key material from CoreDNS,
this key only lives in memory. See issue <https://github.com/miekg/coredns/issues/211>.
TODO(miek): think about key rollovers. TODO(miek): think about key rollovers.