Maintained by: NLnet Labs

[Unbound-users] list_insecure in unbound-control

W.C.A. Wijngaards
Tue Apr 7 16:16:31 CEST 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Hi Jelte,

On 06/04/15 21:49, Jelte Jansen wrote:
> 
> Hi,
> 
> not too long ago two new commands appeared in unbound-control; 
> insecure_add and insecure_remove, to manage negative trust
> anchors.
> 
> These are great and I want to make use of them, but I could not
> find a way to list the current negative trust anchors, which would
> be a very useful command as well for what I'm thinking of.
> 
> I've attached a patch that adds a list_insecure option; it goes
> through the anchors and prints the domain name of each anchor
> without DS or DNSKEY records.
> 
> Please consider this for inclusion in the next release. Or, if I
> am simply blind and such an option did exist already, please ignore
> this patch and kindly point me in the right direction :)

Yes thank you for the patch :-)

Best regards,
   Wouter


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
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=Y+8X
-----END PGP SIGNATURE-----