named-checkconf should warn if a crazy policy is configured. This is a twofold piece of work:

1. Determine what are crazy policies (multiple keys with same role and algorithm, very short key lifetime, ...).
2. Implement the checks.