updated documentation

[public/microdnssec.git] / readme.txt

diff --git a/readme.txt b/readme.txt
index ebee0cbe2c697f824aef7c2592e1d99396c4879f..3305f670c3cffd7d0df0159205b5ca9ea327a115 100644 (file)
--- a/readme.txt
+++ b/readme.txt
@@ -1,6 +1,23 @@
 microdnssec, (c) Svenne Krap, 2010
 released under 2-clause BSD-license
 
 microdnssec, (c) Svenne Krap, 2010
 released under 2-clause BSD-license
 

+Design goals:
+- small
+- few dependencies (bash, bind, ssh)
+- offline (i.e. not having the private-keys on the dns servers)
+
+Limitations (by design):
+- needs bind and ssh-access set up already
+- needs bind set up to include zone.conf (or equivalent) to get managed zones
+- no way to handle unsigned zones
+- no way to handle dns-information (you must be able to provide zonefiles)
+- no secondary dns-server support (but can run as N primaries)
+
+Limitations (to be fixed): 
+- no welcome banner (or version-info) in scripts
+- hardcorded paths (shebangs)
+- script for handling ds-handovers not begun
+

 Before use there are multiple things you need to do:
 1) have one or more servers running bind (9.6.x) you can ssh into 
 2) set up this bind to include an autogenerated file (seczone.conf for example) 
 Before use there are multiple things you need to do:
 1) have one or more servers running bind (9.6.x) you can ssh into 
 2) set up this bind to include an autogenerated file (seczone.conf for example)