Hello,
We are seeing more DNSSEC all the way to the desktop, thanks to NLnet
Labs products like libunbound and GetDNS. Hooray!
What I am wondering is, if this also resolves all issues relating to
NAT/firewall traversal of DNS. Quite a few CPE boxes are known to
mangle DNS traffic under their de
Hi Tony / list,
> DNSSEC detects and blocks mangling, it does not bypass it.
Thanks, I know.
What I am wondering is if the approach of recursive resolution, not explicitly
going through the CPE, suffices to avoid mangling. The CPE *could* still force
control over DNS traffic on account of tar
Hello,
I'm trying to use libunbound (and possibly libldns) to pull out SRV
records. I am not certain how to proceed, based on the documentation
that I could found in the form of man pages, tutorials and doxygen.
Am I correct that libunbound returns RDATA unmodified, and is basically
concerned wi
Ah!
Thanks a lot guys! Even with code :)
Looks like I was on the right track after all, but struggled to find the vital
routines ldns_dname_new_frm_data() and ldns_rdf2str() -- and their
pragmatically short names made it difficult for me / newbee to find them. The
uncompressed names are vita
Hi,
Unbound sets a number of very useful flags after it has completed a
query, to check the security status. But there are a few places where
I'm unsure what to check, and in what order. For instance, the security
of not having found any data or domain.
Is there anywhere I can find something li
Hello,
Is there any way for an asynchronous program to get a preview of DNS
data that is in the process of being validated?
For instance, we sometimes need to go over these three records in a
sequence...
_kerberos.arpa2.org. IN TXT "ARPA2.ORG"
_kerberos._udp.arpa2.org. IN SRV 10 10 88
Hi Wouter,
Thanks for the additional info.
>> Resultant state | Secure | Bogus | Nxdomain
>> ++---+---
>> happy |0 | 1 |0
>> extatic |1 | 0 |0
>
> Adding nxdomain to the list is weird. Also the tabl
Hi Wouter / others,
We're trying to include Unbound into MXE, a cross-platform toolkit for
Windows, http://mxe.cc
Just like the KDE folks, we see this as a good way to roll out our
software to that platform.
The documentation online on how to compile Unbound for Windows is
limited, so we're a bit
Hello,
Should this in configure.ac...
> # are we on MinGW?
> if uname -s 2>&1 | grep MINGW32 >/dev/null; then on_mingw="yes"
> else
> if echo $target | grep mingw32 >/dev/null; then on_mingw="yes"
> else on_mingw="no"; fi
> fi
...have been...
> # are we on MinGW?
> if uname -s
Wouter,
Could you give us the command sequence that you use for cross-compiling
Unbound for Windows?
We're reverse engineering it from autoconfig stuff now, and that's not a
lot of fun.
-Rick
Hi,
Is there a reason why no pkg-config pattern file is included with Unbound?
Are you perhaps assuming that package builders write these files? [I
can imagine a basic version being appreciated by them -- since it
contains knowledge about the way the package is made.]
-Rick
Hello,
I'm not quite clear on the relation between ub_ctx_async() on the one
hand, and ub_fd(), ub_poll() and ub_process() the other hand. The
latter triple can clearly be integrated with an event loop, but the
former seems to suggest that background threads or processes are used.
If I use ub_re
12 matches
Mail list logo
