[Dnssec-trigger] dnssec-trigger patches
psimerda at redhat.com
Wed Jan 21 14:30:21 UTC 2015
----- Original Message -----
> From: "W.C.A. Wijngaards" <wouter at nlnetlabs.nl>
> To: "Pavel Simerda" <psimerda at redhat.com>
> Cc: dnssec-trigger at nlnetlabs.nl, "Tomas Hozza" <thozza at redhat.com>, "Ondřej Surý" <ondrej at sury.org>
> Sent: Wednesday, January 21, 2015 1:07:43 PM
> Subject: Re: dnssec-trigger patches
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> Hi Pavel,
> On 01/19/2015 01:47 PM, Pavel Simerda wrote:
> > ----- Original Message -----
> >> From: "Pavel Simerda" <psimerda at redhat.com> To: "W.C.A.
> >> Wijngaards" <wouter at nlnetlabs.nl> Cc:
> >> dnssec-trigger at nlnetlabs.nl, "Tomas Hozza" <thozza at redhat.com>,
> >> "Ondřej Surý" <ondrej at sury.org> Sent: Monday, January 19, 2015
> >> 1:47:07 PM Subject: Re: dnssec-trigger patches
> >> ----- Original Message -----
> >>> From: "W.C.A. Wijngaards" <wouter at nlnetlabs.nl> To: "Pavel
> >>> Simerda" <psimerda at redhat.com> Cc: dnssec-trigger at nlnetlabs.nl,
> >>> "Tomas Hozza" <thozza at redhat.com>, "Ondřej Surý"
> >>> <ondrej at sury.org> Sent: Tuesday, January 13, 2015 3:52:17 PM
> >>> Subject: Re: dnssec-trigger patches
> > Hi Pavel,
> > On 09/01/15 17:09, Pavel Simerda wrote:
> >>>>> Hi,
> >>>>> new patchset for dnssec-trigger SVN.
> > Thanks, committed. Also committed a fix for newer OSX to flush
> > its cache properly from dnssec-trigger.
> >>> Thanks!
> >>> I have two other related patches.
> Committed them both. I assume the VPN preference is very nice for VPN
> users. :-)
It may be quite a rare use case, though. Most VPN users are happy to choose
between all access through VPN and access only to services under VPN domains
and IP addresses. I think the main reason people want this feature is that
they are used to it from classic NetworkManager /etc/resolv.conf setup.
It also doesn't help much if the VPN nameserver is not DNSSEC ready as
then it's replaced by full recursion or a DNSSEC ready infrastructure
We are examining a couple of more issues and features in Fedora and we are
trying to prepare for getting dnssec-trigger and unbound by default in Fedora
workstation. When we get some more testing, it might be nice to issue a new
release of dnssec-trigger to offer our work to other distributions among other
> Best regards,
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1
> -----END PGP SIGNATURE-----
More information about the dnssec-trigger