diff options
| author | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2013-01-18 18:50:47 +0100 |
|---|---|---|
| committer | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2013-01-18 18:50:47 +0100 |
| commit | 8bb4d08009a12144a2b8b39a3caacaab23a4125b (patch) | |
| tree | 318c98c4310aea10f04dea55d6f8233f9e5a9ad7 /doc | |
| parent | dd11a8bce02895a1be5222f99a577c5fb93cd823 (diff) | |
| download | gnutls-8bb4d08009a12144a2b8b39a3caacaab23a4125b.tar.gz | |
Added --insecure flag to danetool.
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/invoke-danetool.texi | 19 |
1 files changed, 16 insertions, 3 deletions
diff --git a/doc/invoke-danetool.texi b/doc/invoke-danetool.texi index 57df08a258..0aa41ebeba 100644 --- a/doc/invoke-danetool.texi +++ b/doc/invoke-danetool.texi @@ -6,13 +6,13 @@ # # DO NOT EDIT THIS FILE (invoke-danetool.texi) # -# It has been AutoGen-ed January 1, 2013 at 09:08:02 PM by AutoGen 5.16 +# It has been AutoGen-ed January 18, 2013 at 06:50:16 PM by AutoGen 5.16 # From the definitions ../src/danetool-args.def # and the template file agtexi-cmd.tpl @end ignore -Tool to generate DNS resource records for the DANE protocol. +Tool to generate and check DNS resource records for the DANE protocol. This section was generated by @strong{AutoGen}, using the @code{agtexi-cmd} template and the option descriptions for the @code{danetool} program. @@ -46,8 +46,10 @@ USAGE: danetool [ -<flag> [<val>] | --<name>[@{=| @}<val>] ]... --outfile=str Output file --load-pubkey=str Loads a public key file --load-certificate=str Loads a certificate file + --dlv=str Sets a DLV file --hash=str Hash algorithm to use for signing. --check=str Check a host's DANE TLSA entry. + --insecure Do not verify any DNSSEC signature. --local-dns Use the local DNS server for DNSSEC resolving. - disabled as --no-local-dns --inder Use DER format for input certificates and private keys. @@ -72,7 +74,7 @@ hyphen and the flag character. -Tool to generate DNS resource records for the DANE protocol. +Tool to generate and check DNS resource records for the DANE protocol. please send bug reports to: bug-gnutls@@gnu.org @end example @@ -96,6 +98,12 @@ This can be either a file or a PKCS #11 URL This is the ``loads a certificate file'' option. This option takes an argument string. This can be either a file or a PKCS #11 URL +@anchor{danetool dlv} +@subsubheading dlv option + +This is the ``sets a dlv file'' option. +This option takes an argument string. +This sets a DLV file to be used for DNSSEC verification. @anchor{danetool hash} @subsubheading hash option @@ -108,6 +116,11 @@ Available hash functions are SHA1, RMD160, SHA256, SHA384, SHA512. This is the ``check a host's dane tlsa entry.'' option. This option takes an argument string. Obtains the DANE TLSA entry from the given hostname and prints information. +@anchor{danetool insecure} +@subsubheading insecure option + +This is the ``do not verify any dnssec signature.'' option. +Ignores any DNSSEC signature verification results. @anchor{danetool local-dns} @subsubheading local-dns option |