Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Activity
    Internet Systems Consortium, Inc.
    @ISCdotORG_gitlab
    _ondrej> Test
    Ondřej Surý
    @oerdnj
    This is a test of Gitter <-> ISC Mattermost synchronization
    Internet Systems Consortium, Inc.
    @ISCdotORG_gitlab
    _ondrej> jsosborn added to the channel by ondrej.
    Internet Systems Consortium, Inc.
    @ISCdotORG_gitlab
    _ondrej> ondrej updated the channel display name from: [External] BIND 9 Public to: BIND 9 Public [External]
    sharadaibm
    @sharadaibm
    HI
    Aaron Thompson
    @dev-aaront-org_gitlab
    Hello ISC. Can I please get access to fork the BIND repo? I have some patches dealing with ECDSA/EdDSA and PKCS#11 that I'd like to send for review.
    Ondřej Surý
    @oerdnj
    @dev-aaront-org_gitlab Sure, but I need your GitLab handle
    Internet Systems Consortium, Inc.
    @ISCdotORG_gitlab
    _ondrej> Seems like the sync doesn't work
    Ondřej Surý
    @oerdnj
    Ok, so the sync from our MM to Gitter works, but the other direction doesn't
    Aaron Thompson
    @dev-aaront-org_gitlab
    My gitlab handle is dev-aaront-org
    Internet Systems Consortium, Inc.
    @ISCdotORG_gitlab
    _ondrej> @dev-aaront-org_gitlab done
    Aaron Thompson
    @dev-aaront-org_gitlab
    @oerdnj Thanks!
    Ondřej Surý
    @oerdnj

    @dev-aaront-org_gitlab Hi, are you there? I would like to run something through you... and perhaps you might have an idea.

    The BIND 9.11 included a custom OpenSSL patch that added pkcs11 engine - this is of course not sustainable in a long run, so the patch has been dropped, and libp11 engine_pkcs11 or native-pkcs11 is being recommended.

    Now the problem is that for some people (running AEP Keyper load-balancer) it seems that the HSMs are underutilized compared to the custom-OpenSSL-patch in both cases (engine_pkcs11 and native-pkcs11). I honestly have no clue where to start debugging this problem, so any hints or insights would be appreciated.

    Internet Systems Consortium, Inc.
    @ISCdotORG_gitlab
    _ondrej> @here I need to move the team call today to 14:30 CEST or cancel it, ok?
    Stormfollower
    @Stormfollower
    Good day. This is probably the wrong place to ask questions about setup of bind9 and if it is could you point me in the right direction. My question is in regards to reverse pointers and how they work and why they don't seem to want to propagate. I'm currently running bind9 and setup through webmin on debian 10. I've got forward zone(s) working and reverse setup. I had DNSSigning turned on but thought maybe that was the problem so I turned it off, when I did I got dig -x to work but only for about 5 min then it stopped (again). I cannot for the life of me figure out why the reverse pointer(s) don't work. Any ideas? (I am the "owner" of the block of IPs accroding to ARIN so I should have the ability to setup my own DNS and get reverse pointers to work.)
    Ondřej Surý
    @oerdnj
    @Stormfollower I would suggest to direct the common operational problems to bind-users mailing list. There's not enough people here to help with this.