Simplify DNSSEC signing with KASP
Make DNSSEC signing simpler and more intuitive to configure.
- Research current signing strategy
- Introduce "dnssec-policy" statements to configure your Key and Signing Policy (KASP) in named.conf
- Make sure it does not conflict with existing DNSSEC sign configuration options
- For each policy option: 4a. Adjust the code to implement the new policy features 4b. Update tests 4c. Update documentation