[exim-dev] [Bug 2704] DANE client-side documentation issues

Top Page
This message is part of the following thread:
M+++++++++\the complete thread tree sorted by date
MMMMMMMMMMMadmin at <-
.....M.Madmin at ->
Delete this message
Reply to this message
Author: admin
Date:  
To: exim-dev
Subject: [exim-dev] [Bug 2704] DANE client-side documentation issues
https://bugs.exim.org/show_bug.cgi?id=2704

--- Comment #9 from Jeremy Harris <jgh146exb@???> ---
Assuming that DNSSEC was not disabled at build time:

Exim always includes RES_USE_DNSSEC in the resolver options. It uses
res_search() to ask for lookups. It looks at the AD bit in the answer
structure.

Apart from worrying about RES_TRUSTAD, and shenanigans with AA which you have
sometimes to take as a proxy for AD, that's it. "TLSA lookup was dnssec"
means "The response with the TLSA in had the AD bit set".

--
You are receiving this mail because:
You are on the CC list for the bug.
This message was posted to the following mailing lists:
Exim-dev
Mailing List Info | Nearby Messages		<-[exim-dev] [Bug 2704] DANE client-side documentation issues[exim-dev] [Bug 2704] DANE client-side documentation issues->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)