Submitted by fuzzbawl on Mon, 01/09/2017 - 10:46 Pro Licensee
We have had several requests from our downstream customers that they would like to see ECDSA support for DNSSEC. This allows shorter DNS responses and uses less CPU on DNSSEC signing. The big push is for shorter DNS responses. These would be DNSSEC algorithms 13 and 14. We would love to see the capability to sign zones with these algorithms added to Webmin/Virtualmin.
Status:
Closed (fixed)
Comments
Submitted by JamieCameron on Mon, 01/09/2017 - 17:49 Comment #1
Sure, we can add that. What size keys (in bits) are allowed for these algorithms though?
Submitted by fuzzbawl on Fri, 12/15/2017 - 14:02 Pro Licensee Comment #2
I thought I responded to this last year but apparently not. My apologies! ECDSAP256/SHA-256 is 256bit key and ECDSAP384/SHA-384 is 384bit key.
Submitted by JamieCameron on Sat, 12/16/2017 - 13:46 Comment #3
Ok, turns out that I did add this to Webmin already.
Submitted by IssueBot on Sat, 12/30/2017 - 13:56 Comment #4
Automatically closed - issue fixed for 2 weeks with no activity.