On 2015-11-03 05:57, W.C.A. Wijngaards via Unbound-users wrote:
No, there is no option to disable the CNAME checks. The trust in the
other nameserver is by the way not enough reason to have used such an
option, it is protection against inserted spoofed packets here that
has mandated the checks.
Paul Wouters via Unbound-users wrote:
> FYI:
>
> rhbz#1231946 - unbound-anchor ignores net.ipv6.conf.all.disable_ipv6=1 in
> /etc/sysctl.conf
>
> https://bugzilla.redhat.com/show_bug.cgi?id=1231946
>
> Paul
Hi, Paul:
I'm a bit confused. unbound-anchor is an ordinary program that uses the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi Dave,
On 11/03/2015 10:04 PM, Dave Warren via Unbound-users wrote:
> On 2015-11-03 05:57, W.C.A. Wijngaards via Unbound-users wrote:
>> No, there is no option to disable the CNAME checks. The trust in
>> the other nameserver is by the way not