-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Randy Bush wrote: |> o you are running an open resolver in this way. | yes, i am aware of this. gotta get a load on it somehow! :) :-) | openssl? i'll need openssl when the root is signed. | | i presume i will need a lot more in /etc/unbound as well for running jailed. unbound uses entropy (from openssl) to feed to its random number generator, which is used for the ID bits in non-DNSSEC operations. Best regards, ~ Wouter -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) iD8DBQFH/ynIkDLqNwOhpPgRAh7xAJsFssAy097nzleVjGJPeoyeLFKQ3wCffdy8 dwyyjH/v5OcoCEm9SqEn6sI= =3s2i -----END PGP SIGNATURE-----