Add remote TLS certificate verification support, implement Strict and Mutual TLS authentication in BIND and dig (!5837) · Merge requests · ISC Open Source Projects / BIND

Artem Boldariev requested to merge artem-strict-tls into main Feb 15, 2022

This merge request adds support for Strict TLS and Mutual TLS to BIND and dig.

It does so by implementing support for hostname and ca-file options in tls statements in BIND as well as +tls-ca, +tls-hostname, +tls-certfile, and +tls-keyfile command line options to dig.

The support in dig is closely modeled after kdig.

Closes #3163 (closed)

Edited Mar 28, 2022 by Artem Boldariev

Add remote TLS certificate verification support, implement Strict and Mutual TLS authentication in BIND and dig

Merge request reports