Skip to content

Add remote TLS certificate verification support, implement Strict and Mutual TLS authentication in BIND and dig

Artem Boldariev requested to merge artem-strict-tls into main

This merge request adds support for Strict TLS and Mutual TLS to BIND and dig.

It does so by implementing support for hostname and ca-file options in tls statements in BIND as well as +tls-ca, +tls-hostname, +tls-certfile, and +tls-keyfile command line options to dig.

The support in dig is closely modeled after kdig.

Closes #3163 (closed)

Edited by Artem Boldariev

Merge request reports