Pi-Hole/dnsmasq
1
0
Fork 0
mirror of https://github.com/pi-hole/dnsmasq.git synced 2025-12-19 18:28:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

dnssec: add hostname info to insecure DS warning

Browse Source 
Make the existing "insecure DS received" warning more informative by
reporting the domain name reporting the issue.

This may help identify a problem with a specific domain or server
configuration.

Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
This commit is contained in:
Kevin Darbyshire-Bryant
2019-05-11 17:05:23 +00:00
committed by Simon Kelley
parent 8e3a5cba8b
commit c65b77c87f
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/dnssec.c
View File

@@ -899,7 +899,7 @@ int dnssec_validate_ds(time_t now, struct dns_header *header, size_t plen, char
if (rc == STAT_INSECURE) if (rc == STAT_INSECURE)
{ {
my_syslog(LOG_WARNING, _("Insecure DS reply received, do upstream DNS servers support DNSSEC?")); my_syslog(LOG_WARNING, _("Insecure DS reply received for %s, check domain configuration and upstream DNS server DNSSEC support"), name);
rc = STAT_BOGUS; rc = STAT_BOGUS;
} }