[dns-operations] a note on fetching the root zone using "dig"
Anand Buddhdev
anandb at ripe.net
Thu Nov 1 11:58:58 UTC 2018
On 01/11/2018 12:20, Ray Bellis wrote:
Hi Ray,
> That said, if you have built a recent version "dig" with libidn2 support
> and you want to feed the resulting output back into a DNS server as a
> master zone file, you will indeed need the "+noidnout" option so that
> you get xn-- prefixed Punycode labels instead.
I think that this is cause for confusion. On MacOS, if you install
"bind" using homebrew, it's not linked against libidn2, so it doesn't
try to output any unicode characters. But on CentOS, dig *is* linked
against libidn. This means that having "idnout" as the default for dig
will lead to different behaviour.
IMHO, IDN output should default to off, even if dig is linked against
libidn, and then whoever wants to see unicode can choose to do so with
+idnout.
Regards,
Anand
More information about the dns-operations
mailing list