Hello Robin,
looks like we have an little issue using DNSSEC for bugs.gentoo.org, but
not signing 339761.bugs.gentoo.org
`dig does-not-exist.bugs.gentoo.org @8.8.8.8`
returns A record with AD flag.
`dig 339761.bugs.gentoo.org @8.8.8.8`
returns A record w/o AD flag
Both work with local
On 01/24/2013 09:02 AM, Michael Weber wrote:
Did you change anything in the last n days?
Or is the cache of 141.1.1.1 and 8.8.8.8 really compromised?
Me culpa. Looks like these do not support AD now (or never did)
And my unbound always used the first resolver, which has AD.
As antarus pointed
