Re: Unable to get authenticated negative responses from BIND 9.6.0 w/ NSEC3?

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi Mark, Anyone done this recently who can give me a suggestion to where I may go wrong? NXDOMAIN + OPTOUT -> AD=0 Doh! I reversed the logic for OPTOUT in my apparently confused head. Many thanks for the quick correction. Everything

Re: Unable to get authenticated negative responses from BIND 9.6.0 w/ NSEC3?

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi Mark, On 12 Jan 2009, at 23:49, Mark Andrews wrote: I realise this just has to be a user error, but sofar I've been completely unsuccessful in getting an authenticated response from a 9.6.0 recursive server with trusted keys correctly configured

Unable to get authenticated negative responses from BIND 9.6.0 w/ NSEC3?

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I realise this just has to be a user error, but sofar I've been completely unsuccessful in getting an authenticated response from a 9.6.0 recursive server with trusted keys correctly configured. I've done this: * Signed the zones: "parent" is