From Fedora Project Wiki
No edit summary |
(add some dnsmasq information) |
||
| Line 5: | Line 5: | ||
- [[User:kevin]] | - [[User:kevin]] | ||
: dnsmasq forwards all the dnssec data, but it does not support to verify it. Afaik it is also not possible to enable dnssec for hostnames that are configured in /etc/hosts or in the dnsmasq config file. --[[User:Till|Till]] 10:33, 11 December 2008 (UTC) | |||
I think that "invulnerable" is a little to strong and that it should say something like "greatly hardened" | I think that "invulnerable" is a little to strong and that it should say something like "greatly hardened" | ||
- [[User:Ausil]] | - [[User:Ausil]] | ||
Revision as of 10:33, 11 December 2008
Can you coordinate with other dns server packages in fedora to support this if they support dnssec? In particular: pdns and maradns are both packaged.
How does this affect dnsmasq? Does it handle dnssec ok? libvirt makes heavy use of it.
- dnsmasq forwards all the dnssec data, but it does not support to verify it. Afaik it is also not possible to enable dnssec for hostnames that are configured in /etc/hosts or in the dnsmasq config file. --Till 10:33, 11 December 2008 (UTC)
I think that "invulnerable" is a little to strong and that it should say something like "greatly hardened"