diff options
| author |  Miek Gieben <miek@miek.nl>
| 2018-01-04 12:53:07 +0000 |
|---|---|---|
| committer |  GitHub <noreply@github.com>
| 2018-01-04 12:53:07 +0000 |
| commit | 58221f55db5675c6107d19679c46a216ed072aca (patch) | |
| tree | f4f86c8ecd35538da492524dec549566daf40809 /plugin/dnssec | |
| parent | 0600f8c058f39c7afec9f915657e06f158d21c47 (diff) | |
| download | coredns-58221f55db5675c6107d19679c46a216ed072aca.tar.gz coredns-58221f55db5675c6107d19679c46a216ed072aca.tar.zst coredns-58221f55db5675c6107d19679c46a216ed072aca.zip | |
Manual pages (#1346)
* Add manual pages
Generate manual pages from the README and extend README with Name and
Description sections.
The generation requires 'ronn' which may not be available. Just check in
all generated manual pages.
Diffstat (limited to 'plugin/dnssec')
| -rw-r--r-- | plugin/dnssec/README.md | 10 |
1 files changed, 9 insertions, 1 deletions
diff --git a/plugin/dnssec/README.md b/plugin/dnssec/README.md index 419823dbf..904fb9269 100644 --- a/plugin/dnssec/README.md +++ b/plugin/dnssec/README.md @@ -1,6 +1,14 @@ # dnssec -*dnssec* enables on-the-fly DNSSEC signing of served data. +## Name + +*dnssec* - enable on-the-fly DNSSEC signing of served data. + +## Description + +With *dnssec* any reply that doesn't (or can't) do DNSSEC will get signed on-the-fly. Authenticated +denial of existence is implemented with NSEC black lies. Using ECDSA as an algorithm is preferred as +this leads to smaller signatures (compared to RSA). NSEC3 is *not* supported. ## Syntax |