 |
Home
| Calendar
| Mail Lists
| List Archives
| Desktop SIG
| Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings Linux Cafe | Meeting Notes | Linux Links | Bling | About BLU |
|
Home
| Calendar
| Mail Lists
| List Archives
| Desktop SIG
| Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings Linux Cafe | Meeting Notes | Linux Links | Bling | About BLU |
On Mon, Nov 29, 2010 at 10:29 PM, Stephen Adler <adler-wRvlPVLobi1/31tCrMuHxg at public.gmane.org>wrote: So, it seems to me that if I am really wanting to use dnssec, then I > should removed the forwarder option in named.conf and have my named go > straight to the root servers. Some how I feel that this really isn't how > I should be setting my named up.... > It appears that you're thinking about this backwards. If I'm understanding you correctly, you're thinking that the correct thing to do is to use Verizon's DNS, and that end users are not supposed to touch the root nameservers. The opposite is actually the case. To use the Internet the way it was designed, you're supposed to run your own local nameservers that talk to the root nameservers directly. The ISP's nameservers are there for people who are either unable or unwilling to operate their own local network. -- John Abreau / Executive Director, Boston Linux & Unix GnuPG KeyID: 0xD5C7B5D9 / Email: abreauj-Re5JQEeQqe8AvxtiuMwx3w at public.gmane.org GnuPG FP: 72 FB 39 4F 3C 3B D6 5B E0 C8 5A 6E F1 2C BE 99
 |
|
| BLU is a member of BostonUserGroups | |
| We also thank MIT for the use of their facilities. | |
