[Unbound-users] DNSSEC validation by default?
wouter at NLnetLabs.nl
Thu Aug 7 14:59:39 UTC 2008
-----BEGIN PGP SIGNED MESSAGE-----
Roy Arends wrote:
| Can we make that behavior configurable?
Well. I would rather not.
The default would need to be the safe behaviour. And the number of
users that need the unsafe behaviour is very small. Is an upgrade of
the other software an option? (it was expecting AD bits in replies, so
it can be made to set them in queries, I would think).
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
-----END PGP SIGNATURE-----
More information about the Unbound-users