[dns-operations] security-aware stub resolver

Joe Abley jabley at ca.afilias.info
Thu May 22 12:46:25 UTC 2008

On 22 May 2008, at 07:18, Tony Finch wrote:

> On Wed, 21 May 2008, Joe Abley wrote:
>> Is anybody aware of an implementation of a security-aware stub
>> resolver outside of the laboratory? That is, a security-aware stub
>> resolver that has a noticeable user base in the real world, for any
>> values of "noticeable" and "real world" that seems sensible to you?
> The recent unbound-1.0 announcement led me to...
> http://www.nlnetlabs.nl/ldns/
> http://www.nlnetlabs.nl/netdns.html

Ah, I had forgotten about ldns. I had not forgotten about Net::DNS,  
but I had tucked it away into some other compartment, away from the  
"noticeable user base" box which so far only contains pocket lint (and  
"no tea").

I seem to remember hearing about a DNSSEC plugin for Mozilla, but when  
I look now all I see is people asking about whether such a thing might  
exist. Quite possibly I'm looking for the wrong thing.

Are there any popular applications (in a hoardes-of-hotmail-users  
sense, not in a "all five of us use it regularly and think it's great"  
sense) that use ldns or Net::DNS in such a way that I could call them  
"security-aware stub resolvers"?


More information about the dns-operations mailing list