Security Concern

Right now it appears that Linode is doing the right thing.

I want to know if it is policy that linode will continue to do the right thing.

What I'm talking about is DNSSEC validation with your DNS servers.

When I do a dig for a domain name that fails DNSSEC validation I want the DNS server to not give me a result, and that is the current behavior at least at the Dallas facility using the nameservers in /etc/resolv.conf that are there by default.

I need this because curl currently does not ability to do DNSSEC validation of its own, and it helps mitigate MITM if the url I'm connecting to uses DNSSEC.

I need to know if this is policy, that you won't change the behavior to ignore DNSSEC validation in the future.

Thank you.

0 Replies

Reply

Please enter an answer
Tips:

You can mention users to notify them: @username

You can use Markdown to format your question. For more examples see the Markdown Cheatsheet.

> I’m a blockquote.

I’m a blockquote.

[I'm a link] (https://www.google.com)

I'm a link

**I am bold** I am bold

*I am italicized* I am italicized

Community Code of Conduct