Created attachment 156476 [details]
bind GOST compile options modify
The command dnssec-keygen to generate GOST keys is now -contrary to bind99- using raw keys by default. These keys are not accepted when using for example Knot's DNSSEC autosigning functionality.
ISC was aware that some people would prefer the old default; enclosed patch allows to compile that.
For the rest it doesn't change anything. But I also removed some superfluous repeated text at the GSSAPI options, just to keep it clean, and to be consequent with how the DLZ menu is.
A commit references this bug:
Date: Mon May 18 11:41:43 UTC 2015
New revision: 386672
Allow BIND 9.10 users to select the old key format when using GOST.
While there, reword the options a bit, and the pkg-help files.
PR: 200031 
Submitted by: Leo Vandewoestijne 
Sponsored by: Absolight