On 2014-01-11, at 17:16, Anand Buddhdev <[email protected]> wrote: > On 11/01/2014 23:00, Rick van Rein wrote: > >> Am I correct that Unbound cannot require DNSSEC validation for its >> resolution? > > Not sure what you are asking here.
I think the question is whether it's possible to configure an unbound validator to treat verifiably insecure data the same as bogus data when deciding how to respond to a query from a client. The answer to that question seems to be no. Joe
signature.asc
Description: Message signed with OpenPGP using GPGMail
_______________________________________________ Unbound-users mailing list [email protected] http://unbound.nlnetlabs.nl/mailman/listinfo/unbound-users
