RFC 4033, 4034 and 4035 are on the IETF Standards track. Any recursive DNS server not supporting 10-yo standards is broken.
If we keep dancing around non-standard compliant devices, the situation won't ever improve. Go yell at your vendors for sticking their heads into sand. Or vote with your money. As a bonus I've shown that you can setup /etc/default/unbound before you install the package when you are behind broken device. There's absolutely no need to patch the package for least-common denominators, au contraire, the package should set a reasonable and secure standard. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/988513 Title: unbound defaults break DNS resolution when upstream DNS lacks DNSSEC support To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/unbound/+bug/988513/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
