Commit 4359be18 authored by Evan Hunt's avatar Evan Hunt
Browse files

[master] update secroots doc in rndc man page

parent 0698ad85
...@@ -774,9 +774,15 @@ ...@@ -774,9 +774,15 @@
<term><userinput>secroots <optional>-</optional> <optional><replaceable>view ...</replaceable></optional></userinput></term> <term><userinput>secroots <optional>-</optional> <optional><replaceable>view ...</replaceable></optional></userinput></term>
<listitem> <listitem>
<para> <para>
Dump the server's security roots and negative trust anchors Dump the security roots (i.e., trust anchors
for the specified views. If no view is specified, all views configured via <command>trusted-keys</command>,
are dumped. <command>managed-keys</command>, or
<command>dnssec-validation auto</command>) and negative trust
anchors for the specified views. If no view is specified, all
views are dumped. Security roots will indicate whether
they are configured as trusted keys, managed keys, or
initializing managed keys (managed keys that have not yet
been updated by a successful key refresh query).
</para> </para>
<para> <para>
If the first argument is "-", then the output is If the first argument is "-", then the output is
...@@ -963,15 +969,15 @@ ...@@ -963,15 +969,15 @@
<listitem> <listitem>
<para> <para>
When called without arguments, display the current When called without arguments, display the current
values of the <command>tcp-initial-timeout</command>, values of the <command>tcp-initial-timeout</command>,
<command>tcp-idle-timeout</command>, <command>tcp-idle-timeout</command>,
<command>tcp-keepalive-timeout</command> and <command>tcp-keepalive-timeout</command> and
<command>tcp-advertised-timeout</command> options. <command>tcp-advertised-timeout</command> options.
When called with arguments, update these values. This When called with arguments, update these values. This
allows an administrator to make rapid adjustments when allows an administrator to make rapid adjustments when
under a denial of service attack. See the descriptions of under a denial of service attack. See the descriptions of
these options in the BIND 9 Administrator Reference Manual these options in the BIND 9 Administrator Reference Manual
for details of their use. for details of their use.
</para> </para>
</listitem> </listitem>
</varlistentry> </varlistentry>
......
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment