On Fri, Feb 12, 2016 at 04:20:51PM +0900,
Christoph Rauterberg <[email protected]> wrote
a message of 60 lines which said:
> I was wondering, if there is some way to get the information about
> the Authentication Bit of DNSSEC specified in the DNS query headers.
You mean the reply?
> A.f.a.i.k., the probes do something similiar/do a /dig/ lookup.
No. The probes have a DNS client. dig is a DNS client. That's all the
similarity.
> Can anyone maybe tell me, if there are possibilities to access the AUTH
> bith
It is accessible (the full response is in the "abuf" field, you just
have to decode it, example in Python:
answer = result['abuf'] + "=="
content = base64.b64decode(answer)
msg = dns.message.from_wire(content)
if msg.flags & dns.flags.AD:
print "Authentic"
