message is bogus, non secure rrset with Unbound as local caching resolver

Tony Finch dot at
Thu Mar 3 10:57:54 UTC 2016

W.C.A. Wijngaards via Unbound-users <unbound-users at> wrote:

> > Following the "not a bug" response from the BIND maintainers
> > yesterday evening, can you please point to chapter and verse
> > mandating this behaviour for non-authoritative recursive
> > resolvers?
> RFC4035 3.2.3 for validators, all RRsets in answer and authority
> sections should be authentic ...

That's about setting the ad bit. Was it set in this response?

f.anthony.n.finch  <dot at>
Humber, Thames: North 5 or 6, backing south 3 or 4, backing southeast 5 to 7
later. Slight or moderate, occasionally rough later. Showers, rain later.
Good, occasionally poor later.

More information about the Unbound-users mailing list