Zitat von Mark Andrews ma...@isc.org:
Is this still with BIND 9.7.0-P1 or something more recent? If it
is still BIND 9.7.0-P1 then please upgrade. There really is no
point debugging validation failures in BIND 9.7.0-P1 anymore as the
validator has had really extensive changes since then.
which indicates that named thinks the answer is secure.
This is working, no problem but i still get broken trust chain for
some non existing records like for example this one:
; DiG 9.7.0-P1 +dnssec mail.cdu-freiburg.de
; (1 server found)
;; global options: +cmd
;; Got answer
Zitat von Mark Andrews ma...@isc.org:
Is this still with BIND 9.7.0-P1 or something more recent? If it
is still BIND 9.7.0-P1 then please upgrade. There really is no
point debugging validation failures in BIND 9.7.0-P1 anymore as the
validator has had really extensive changes since then.
Zitat von Mark Andrews ma...@isc.org:
In message 20101118131400.37717e5p5tard...@webmail.kwsoft.de,
lst_ho...@kwsof
t.de writes:
We are using Bind 9.7 at the border to resolve DNS queries for a small
LAN. After moving forward in using IPv6 we discovered many broken
trust chain errors in
We are using Bind 9.7 at the border to resolve DNS queries for a small
LAN. After moving forward in using IPv6 we discovered many broken
trust chain errors in the bind log for non existing records. One
example is
Nov 18 01:18:21 firewall named[27580]: error (broken trust chain)
5 matches
Mail list logo
