On 01/13/2014 03:32 PM, Joe Abley wrote: > > On 2014-01-11, at 17:16, Anand Buddhdev <[email protected]> wrote: > >> On 11/01/2014 23:00, Rick van Rein wrote: >> >>> Am I correct that Unbound cannot require DNSSEC validation for its >>> resolution? >> >> Not sure what you are asking here. > > I think the question is whether it's possible to configure an unbound > validator to treat verifiably insecure data the same as bogus data when > deciding how to respond to a query from a client. > > The answer to that question seems to be no. >
I'm not sure, but might this be easy to implement within unbound using the python plugin interface? Tom
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Unbound-users mailing list [email protected] http://unbound.nlnetlabs.nl/mailman/listinfo/unbound-users
