Hello today i registered a xyz doamin. If i try to setup the dnskey setting the option i have avaiable look like this
Public key digest:
hash type:
Keytag:
Algorithm:
i could setup only one of those digests is that ok?
The “hash type” is often also called “digest type”.
Deploying only digest type 2 (SHA-256) is what the overwhelming majority of TLDs does, so you’ll be fine. Do not use digest type 1 (SHA-1), as it is insecure. Do not only use digest type 3 (GOST R 34.11-94) or 4 (SHA-384), as they might not be supported by the validating resolver.
Best,
Nils