On Fri, Oct 08, 2010 at 01:44:23PM +0200, W.C.A. Wijngaards <wouter at NLnetLabs.nl> wrote a message of 36 lines which said: > Yes, I thought this sort of deployment could be an issue. The option: > domain-insecure: "mytld" > tells unbound that this is a non-DNSSEC domain. Works for me. Thanks.