On Sun, 24 May 2020 11:00:00 +0200 (CEST) Havard Eidnes <[email protected]> wrote:
> Nope. There is no specified protocol to direct recursive > resolution to use TLS towards specific authoritative servers. > There has been talk about this on the DNSOP IETF working group, > but nothing has been agreed. This means that the queries from a > recursive resolver to authoritative name servers will be in > cleartext, typically using UDP, may (try to) use TCP in case of > truncation. OK thanks for the info.
