[master] allow CDS/CDNSKEY records to be signed with only KSK
4721. [func] 'dnssec-signzone -x' and 'dnssec-dnskey-kskonly' options now apply to CDNSKEY and DS records as well as DNSKEY. Thanks to Tony Finch. [RT #45689]
Please register or sign in to comment