default local DNS caching name server
Bruno Wolff III
bruno at wolff.to
Sat Apr 12 01:29:53 UTC 2014
On Fri, Apr 11, 2014 at 18:44:21 -0400,
Paul Wouters <paul at nohats.ca> wrote:
>First, TTLs you receive from a forwarder can always be manipulated, even
>with DNSSEC - otherwise caching wouldn't work.
>Second, I still don't understand the point. Are you suggesting it is
>better to believe all DNS lies than to not know where the lies lead?
Not better. That DNSSEC doesn't really solve everythin one might
want it to. And hence one might want to avoid ISPs' DNS services
in some cases.
More information about the devel