[Dnsmasq-discuss] DNSSEC: Answer for local hosts with AD flag set?

Ernst Ahlers ea at ct.de
Fri Oct 2 18:34:30 BST 2015


Thanks for chiming in Stephane,

> Allowing dnsmasq to sign (or give a proof of authenticity) would solve this 
> problem, yet I am sure it is not easy.

AFAIK there's no provision yet in dnsmasq for keeping signed domains.
After all it was never intended to be a fully fledged DNS server.

So the only viable option I see now would be switching to Unbound --
which AVM is unlikely to do IMHO.

Have a nice weekend all around!

Ernst

-- 
Ernst Ahlers, Redakteur/Editor
PGP-Key-ID: 0x265E 3662, plain text preferred

c't - Magazin für Computertechnik
www.ct.de
Karl-Wiechert-Allee 10
D-30625 Hannover, Germany
Phone +49 (0)511 5352 300
Fax +49 (0)511 5352 417

Heise Medien GmbH & Co. KG
Registergericht: Amtsgericht Hannover HRA 26709
Persönlich haftende Gesellschafterin:
Heise Medien Geschäftsführung GmbH
Registergericht: Amtsgericht Hannover, HRB 60405
Geschäftsführer: Ansgar Heise, Dr. Alfons Schräder

Katze 5e


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 246 bytes
Desc: OpenPGP digital signature
URL: <http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/attachments/20151002/9e4df2bd/attachment.sig>


More information about the Dnsmasq-discuss mailing list