[Dnssec-trigger] dnssec-trigger patches
Pavel Simerda
psimerda at redhat.com
Wed Jan 21 14:30:21 UTC 2015
----- Original Message -----
> From: "W.C.A. Wijngaards" <wouter at nlnetlabs.nl>
> To: "Pavel Simerda" <psimerda at redhat.com>
> Cc: dnssec-trigger at nlnetlabs.nl, "Tomas Hozza" <thozza at redhat.com>, "Ondřej Surý" <ondrej at sury.org>
> Sent: Wednesday, January 21, 2015 1:07:43 PM
> Subject: Re: dnssec-trigger patches
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Hi Pavel,
>
> On 01/19/2015 01:47 PM, Pavel Simerda wrote:
> > ----- Original Message -----
> >> From: "Pavel Simerda" <psimerda at redhat.com> To: "W.C.A.
> >> Wijngaards" <wouter at nlnetlabs.nl> Cc:
> >> dnssec-trigger at nlnetlabs.nl, "Tomas Hozza" <thozza at redhat.com>,
> >> "Ondřej Surý" <ondrej at sury.org> Sent: Monday, January 19, 2015
> >> 1:47:07 PM Subject: Re: dnssec-trigger patches
> >>
> >> ----- Original Message -----
> >>> From: "W.C.A. Wijngaards" <wouter at nlnetlabs.nl> To: "Pavel
> >>> Simerda" <psimerda at redhat.com> Cc: dnssec-trigger at nlnetlabs.nl,
> >>> "Tomas Hozza" <thozza at redhat.com>, "Ondřej Surý"
> >>> <ondrej at sury.org> Sent: Tuesday, January 13, 2015 3:52:17 PM
> >>> Subject: Re: dnssec-trigger patches
> >>>
> > Hi Pavel,
> >
> > On 09/01/15 17:09, Pavel Simerda wrote:
> >>>>> Hi,
> >>>>>
> >>>>> new patchset for dnssec-trigger SVN.
> >
> > Thanks, committed. Also committed a fix for newer OSX to flush
> > its cache properly from dnssec-trigger.
> >>>
> >>> Thanks!
> >>>
> >>> I have two other related patches.
>
> Committed them both. I assume the VPN preference is very nice for VPN
> users. :-)
It may be quite a rare use case, though. Most VPN users are happy to choose
between all access through VPN and access only to services under VPN domains
and IP addresses. I think the main reason people want this feature is that
they are used to it from classic NetworkManager /etc/resolv.conf setup.
It also doesn't help much if the VPN nameserver is not DNSSEC ready as
then it's replaced by full recursion or a DNSSEC ready infrastructure
nameserver.
We are examining a couple of more issues and features in Fedora and we are
trying to prepare for getting dnssec-trigger and unbound by default in Fedora
workstation. When we get some more testing, it might be nice to issue a new
release of dnssec-trigger to offer our work to other distributions among other
things.
Cheers,
Pavel
> Best regards,
> Wouter
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1
>
> iQIcBAEBAgAGBQJUv5aPAAoJEJ9vHC1+BF+NLnYP/3R+9NVePNFF+FNNoi2IY+TJ
> FcpMUf0btN05Il7/b5WTRyDrEi4WAkDSdkx4MHNDBoVnvMl9i+Thzs/iQRumgd7S
> 9042x8V4hdC/VaBhx7CRHvF0bVNMswaVT9ZDVw7VZe87eCvIp4v/7Me/0G2XYbhl
> zNMCXyvKENJY/+iBXPSEz2WQf0qCqdOlv5e6Qfkoe1PkvMfMRO6S904/hx+9Wktl
> C0X0nygNv/4IDYO4JSyHzjIZ/2wjbyRldNydMs3sxXRnZNVU5Ta+BdOcw9GGLfBO
> wsysNVHP+96+MgJjUB5G3k9sToRFUCxrr5zkHcnC7uCMX+6NPqu91ZCOiHseZLL1
> Rt1Z9yzERfYgfdxoAEQUoxgbmYrjlrebaPgxiLOu7o013+4RqfzoD9/RwFUhFkou
> Jp5BFiXixeB/Tk2/juAskwOCWV+PbX5yWCHLIKDuT8tJ/UMYeuknciwU+dfyvEO9
> sTBz/AgG5KlBLywvPenoiWtYxST1n+Xobmslp+auUfawW+CSy9QoQ0vDVZ6OHdT2
> wnFmLcBSeuXeOFI6I16dwhyxuYcYjAiGjE0dudYtKDfDiny9ftxCU+HTDJVykx2z
> HmfAlLAiFKR7YZ0zV7vFhaxoJg0PLlp886ydLUWuPxxjQOXZ/0arG06gFR71JaLa
> Ez38gszu4vI+pKI9KxPg
> =gaTE
> -----END PGP SIGNATURE-----
>
More information about the dnssec-trigger
mailing list