Red Hat Bugzilla – Bug 1260209
oo-install should have an option to not use DNSSEC for an external BIND server.
Last modified: 2016-07-03 20:45:42 EDT
Description of problem:
oo-install by default demands a DNSSEC key, and configures DNSSEC by default. It should have an option to not use DNSSEC for an external BIND server.
Its a fundamental requirement in our installation steps (even without oo-install) to install named with a DNSSEC key:
We don't recommend installing without a DNSSEC key due to security concerns. The configuration can be changed after the fact to be insecure. At this time, we are not going to go back and make this change.