[dns-operations] DNSSEC impact on applications was Re: security-aware stub resolver

Lutz Donnerhacke lutz at iks-jena.de
Fri May 23 13:24:12 UTC 2008

* Edward Lewis wrote:
> A SERVFAIL return from bad DNSSEC

This behavior is not longer default for i.e. bind. Now only the AD bit will
not be set if validation fails.

More information about the dns-operations mailing list