On Tue, Jul 7, 2015, at 18:25, FreeBSD Security Advisories wrote: > > IV. Workaround > > No workaround is available, but hosts not running named(8) are not > vulnerable. >
Why is no workaround available? Can't you just disable DNSSEC validation? dnssec-enable no; dnssec-validation no; In fact, don't they have to be explicitly enabled anyway? _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscr...@freebsd.org"