update to 9.7.1-P2

[tridge/bind9.git] / contrib / zkt / examples / flat / dnssec.conf

diff --git a/contrib/zkt/examples/flat/dnssec.conf b/contrib/zkt/examples/flat/dnssec.conf
index 199618458532b7108a6aeb949b9b95e87e6727de..80b411ff3f2891420a5374f31fc6edf51c811341 100644 (file)
--- a/contrib/zkt/examples/flat/dnssec.conf
+++ b/contrib/zkt/examples/flat/dnssec.conf
@@ -1,5 +1,5 @@
 #   
-#      @(#) dnssec.conf vT0.98 (c) Feb 2005 - Sep 2008 Holger Zuleger hznet.de
+#      @(#) dnssec.conf vT0.99a (c) Feb 2005 - Jul 2009 Holger Zuleger hznet.de
 #   
 
 #   dnssec-zkt options
@@ -18,12 +18,11 @@ KEY_TTL:    1h      # (3600 seconds)
 Serialformat:  incremental
 
 #   signing key parameters
+Key_algo:      RSASHA1 # (Algorithm ID 5)
 KSK_lifetime:  60d     # (5184000 seconds)
-KSK_algo:      RSASHA1 # (Algorithm ID 5)
 KSK_bits:      1300
 KSK_randfile:  "/dev/urandom"
 ZSK_lifetime:  2w      # (1209600 seconds)
-ZSK_algo:      RSASHA1 # (Algorithm ID 5)
 ZSK_bits:      512
 ZSK_randfile:  "/dev/urandom"
 SaltBits:      24
@@ -39,5 +38,6 @@ Zonefile:     "zone.db"
 KeySetDir:     "../keysets"
 DLV_Domain:    ""
 Sig_Pseudorand:        True
-Sig_Parameter: ""
+Sig_GenerateDS:        True
+Sig_Parameter: "-n 1"
 Distribute_Cmd:        "./dist.sh"