https://bugs.exim.org/show_bug.cgi?id=2704
--- Comment #9 from Jeremy Harris <[email protected]> --- Assuming that DNSSEC was not disabled at build time: Exim always includes RES_USE_DNSSEC in the resolver options. It uses res_search() to ask for lookups. It looks at the AD bit in the answer structure. Apart from worrying about RES_TRUSTAD, and shenanigans with AA which you have sometimes to take as a proxy for AD, that's it. "TLSA lookup was dnssec" means "The response with the TLSA in had the AD bit set". -- You are receiving this mail because: You are on the CC list for the bug. -- ## List details at https://lists.exim.org/mailman/listinfo/exim-dev Exim details at http://www.exim.org/ ##
