On Tue, Oct 20, 2020 at 2:42 PM Marcus Meissner <meissner@suse.de> wrote:
We updated bind as we had a lot of requests for a modern version. :/ The last bind update currently enforces DNSSEC usage. try in. /etc/named.conf dnssec-enable no;
Thank you. I actually did set that line and the dnssec-validation no; right now. The bind now works again. Maybe I am a total noob, but I wasnt using any forwarders settings or forwarders first at all, and I had thought dnssec so far as some option, how come "all" the domains and lookups I tried always ended with an error or srvfail (nslookup) as a result. Shouldnt dnssec work when domains actually dont use it? and dont the large and populare gTLD and other TLD use dnssec? Everything simple failed and the journalctl was full of those errors. Am i missing something? thanks. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org