Confirm
298
edits
Changes
→nginx and openssl
== nginx and openssl ==
The following patch adds DNSSEC-TLS functionality to nginx 1.0.4: [http://wiki.mozilla.org/File:Nginx-1.0.4-pwyll.patch.gz nginx-1.0.4-dnssec-tls.patch.gz]. This requires the generation of a dnssec chain file (see the "ssl_dnssec_chain" option in nginx's conf/nginx.conf). The code to do this has not been released yet.
This patch is adds DNSSEC-TLS functionality to openssl 1.0.0d (required for nginx) : [http://wiki.mozilla.org/File:Openssl-1.0.0d-pwyll.patch.gz openssl-1.0.0d-dnssec-tls.patch.gz]
Of course, this is useless without a client that also supports this functionality. A simple telnet-like client has been written as a proof of concept, but the code has not yet been released.
