Unbound 1.7.0rc2 pre-release

W.C.A. Wijngaards wouter at nlnetlabs.nl
Mon Mar 12 08:22:43 UTC 2018


Hi,

On 11/03/18 22:33, Kazunori Fujiwara via Unbound-users wrote:
>> From: Ralph Dolmans via Unbound-users <unbound-users at unbound.net>
>>> - Aggressive use of NSEC is not so transparent to me.
>>>   unsure, what I really may expect here. Under which conditions is this active?
>>
>> When this option is enabled Unbound will try to use cached NSEC records
>> to generate an NXDOMAIN, NODATA or wildcard answer. See RFC8198.
> 
> Thanks very much for implementing RFC 8198.
> 
> One comment is that there is no documentation about "aggressive-nsec: yes"
> in server secton. (default no)
> 
> # I read it from util/config_file.c .
> 
> Please add documentations about aggressive-nsec.

Did that for the upcoming rc3 of 1.7.0, thank you for noting it,

Best regards, Wouter

> 
> --
> Kazunori Fujiwara / fujiwara at jprs.co.jp
> 


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.nlnetlabs.nl/pipermail/unbound-users/attachments/20180312/298a115f/attachment.bin>


More information about the Unbound-users mailing list