issues
search
qdm12
/
dns
Docker DNS server on steroids to access DNS-over-TLS from Cloudflare, Google, Quad9, Quadrant or CleanBrowsing
https://hub.docker.com/r/qmcgaw/cloudflare-dns-server
MIT License
219
stars
37
forks
source link
feat(dnssec): new `pkg/dnssec` package
#97
Open
qdm12
opened
2 years ago
qdm12
commented
2 years ago
[x] Iterative DNSSEC validation
[ ] Metrics: secure, insecure, bogus
[x] Validate root zone with hardcoded DS record from IANA
[ ] Auto-update root zone DS record
[ ] Caching?
[ ] Use custom caching or DNS request/response existing cache interface?
[ ] Can DoT/DoH handlers only add to cache if DNSSEC validated (to check depending on strict mode)
[x] Handle NSEC and/or NSEC3
[ ] Strict mode to reject insecure responses