DNSSEC validation on combined auth+recursive server

[Eivind Olsen]

Hello.

I seem to remember seeing something about DNSSEC validation not working
when a BIND server is used both to serve the DNSSEC signed zone
authoritatively, and as a resolver? Unfortunately, I haven't managed to
find this information again, and now I'm wondering if it was all in my
head.

(Yes, I know it's best practice to combine the authoritative + recursive
functionality)

Is my mind playing tricks with me?

Regards
Eivind Olsen