Lines Matching refs:dnssec

87   It does do some rrsig duplicate removal, in the msgparser, for dnssec qtype
124 o The method by which dnssec-lameness is detected is not secure. DNSSEC lame
125   is when a server has the zone in question, but lacks dnssec data, such as
126   signatures. The method to detect dnssec lameness looks at nonvalidated 
128   to create a false sense of dnssec-lameness in the child, or a false sense
129   or dnssec-non-lameness in the child. The first results in the server marked
137   The dnssec-lameness detection is used to detect operator failures, 
141   parent, dnssec-lameness detection enables. This delivers dnssec to our 
149   detect dnssec-lameness is less of a problem than marking honest 
150   servers lame. dnssec-lameness is a config error and deserves the trouble.
159   on a server, dnssec-lameness detection does not work - no dnssec-lameness 
160   is detected. Instead the zone that is dnssec-lame becomes bogus.