> Yes, and I know why the restriction is in RFC 1884 and it > is a reasonable restriction.
I don't think so, IP source address is easy to forge and it does not
add any meaning protection. DNSSEC is the only way if you want trusted
responsees. therefore, i agree with enabling RES_INSECURE1 by default.
itojun
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-net" in the body of the message
