Update configuration to 9.16

Fixes warnings in default configuration file. Skip always enabled DNSSEC and use more recent trust anchor format.
2020-04-24 15:17:14 +02:00 · 2020-04-24 15:17:14 +02:00 · aaa1cdaabf
commit aaa1cdaabf
parent 1d9c1cf435
3 changed files with 5 additions and 3 deletions
--- a/bind.spec
+++ b/bind.spec
@ -63,7 +63,7 @@ Summary:  The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) serv
 Name:     bind
 License:  MPLv2.0
 Version:  9.16.2
-Release:  1%{?PATCHVER:.%{PATCHVER}}%{?PREVER:.%{PREVER}}%{?dist}
+Release:  2%{?PATCHVER:.%{PATCHVER}}%{?PREVER:.%{PREVER}}%{?dist}
 Epoch:    32
 Url:      https://www.isc.org/downloads/bind/
 #
@ -1160,6 +1160,9 @@ fi;


 %changelog
+* Fri Apr 24 2020 Petr Menšík <pemensik@redhat.com> - 32:9.16.2-2
+- Remove warnings in default configuration
+
 * Thu Apr 16 2020 Petr Menšík <pemensik@redhat.com> - 32:9.16.2-1
 - Update to 9.16.2

--- a/named.conf
+++ b/named.conf
@ -30,7 +30,6 @@ options {
 	*/
 	recursion yes;

-	dnssec-enable yes;
 	dnssec-validation yes;

 	managed-keys-directory "/var/named/dynamic";
--- a/named.root.key
+++ b/named.root.key
@ -1,4 +1,4 @@
-managed-keys {
+trusted-anchors {
        # ROOT KEYS: See https://data.iana.org/root-anchors/root-anchors.xml
        # for current trust anchor information.
        #