[nsd-users] Can XoT use self-signed certificates?
A. Schulze
sca at andreasschulze.de
Wed Mar 19 07:39:54 UTC 2025
Hello Klaus,
Klaus Darilion via nsd-users:
> Further, why is it necessary to explicitly set the tls-cert-bundle?
> I guess there is a reason as Bind9 also requires to manually set the
> ca-file for mutual TLS and client verification. I just don’t
> understand why.
different OS flavors have different places for a "default set of certs
trusted by the os vendor" (CA/B truststor)
I think, for that reason, it's nessesary to be explicit in nsd.conf
I assume similiar reasons in unbound...
Andreas
More information about the nsd-users
mailing list