Maintained by: NLnet Labs

message is bogus, non secure rrset with Unbound as local caching resolver

Tony Finch
Thu Mar 3 11:57:54 CET 2016


W.C.A. Wijngaards via Unbound-users <unbound-users at unbound.net> wrote:

> > Following the "not a bug" response from the BIND maintainers
> > yesterday evening, can you please point to chapter and verse
> > mandating this behaviour for non-authoritative recursive
> > resolvers?
>
> RFC4035 3.2.3 for validators, all RRsets in answer and authority
> sections should be authentic ...
>
> https://tools.ietf.org/html/rfc4035#section-3.2.3

That's about setting the ad bit. Was it set in this response?

Tony.
-- 
f.anthony.n.finch  <dot at dotat.at>  http://dotat.at/
Humber, Thames: North 5 or 6, backing south 3 or 4, backing southeast 5 to 7
later. Slight or moderate, occasionally rough later. Showers, rain later.
Good, occasionally poor later.