[MacPorts] #49264: unbound don't promote DNSSEC under El Capitan

MacPorts noreply at macports.org
Thu Oct 29 13:03:29 PDT 2015


#49264: unbound don't promote DNSSEC under El Capitan
-----------------------+----------------------
  Reporter:  fritzs@…  |      Owner:  snc@…
      Type:  defect    |     Status:  new
  Priority:  Normal    |  Milestone:
 Component:  ports     |    Version:  2.3.4
Resolution:            |   Keywords:  haspatch
      Port:  unbound   |
-----------------------+----------------------

Comment (by dluke@…):

 Replying to [comment:24 snc@…]:
 > Do we want to modify the unbound.conf-dist file to set the trust anchor?

 up to you, but I think it's probably a good idea.

 > Similarly, do we want to install the default config file (I think we
 want to force the user to configure the program so I'm currently against
 this but open to ideas).

 this is also up to you, just make sure you have a really conservative
 default conf if you go that route - the internet doesn't need more open
 resolvers for people to abuse. (I don't have the bind9 conf file installed
 by default - and so I think it's reasonable to require a person to
 manually set it up).

-- 
Ticket URL: <https://trac.macports.org/ticket/49264#comment:25>
MacPorts <https://www.macports.org/>
Ports system for OS X


More information about the macports-tickets mailing list