dnssec on aftr?
Francis Dupont
fdupont at isc.org
Thu Mar 22 09:38:59 UTC 2012
> I was not planning on delivering this functionality or even testing it.
>
> http://gettys.wordpress.com/2012/03/21/an-minor-diversion-into-dnssec/
>
> but normally, I have dnssec and bind turned on. I was figuring that
> the sd-aftr would be running an ancient version of bind without
> dnssec.
=> I put the bind9 package for Ubuntu 11.10 and didn't change a bit
to the default config (/etc/bind/named.conf*) which is:
listen-on-v6 { any; };
auth-nxdomain no;
so no DNSSEC validation by default.
According to syslog, it is a 9.7.3.
Regards
Francis Dupont <fdupont at isc.org>
More information about the sdcpe-devel
mailing list