[dns-operations] security-aware stub resolver

Joe Abley jabley at ca.afilias.info
Thu May 22 00:55:14 UTC 2008

Hi all,

RFC 4033 contains text which refers to "security-aware stub  
resolvers". From the document,

"Stub resolvers, by definition, are minimal DNS resolvers that use  
recursive query mode to offload most of the work of DNS resolution to  
a recursive name server."

Is anybody aware of an implementation of a security-aware stub  
resolver outside of the laboratory? That is, a security-aware stub  
resolver that has a noticeable user base in the real world, for any  
values of "noticeable" and "real world" that seems sensible to you?


More information about the dns-operations mailing list