[email protected] said: > DNSSEC disadvantages > - additional complexity for NTS clients > - not widely supported (i.e. NTS clients would need to have their own
I think the way to use DNSSEC is to setup a local caching resolver that uses DNSSEC and edit your local /etc/resolv to point to it rather than whatever they are currently using. > - not always available (e.g. DNS blocked to Internet and local servers > don't support it) If that's happening, then the current pool approach won't work. Does anybody know of a good library package that supports DNSSEC? There is no way to get the TTL using the POSIX API for DNS so I'd be happy to switch to another package as long as it is portable. -- These are my opinions. I hate spam. _______________________________________________ pool mailing list [email protected] http://lists.ntp.org/listinfo/pool
