[PATCH 5/5] resolv.conf: Add "trust-ad" option

Since we are running unbound locally which always runs DNSSEC validation, we can simply trust it and pass the ad flag on to applications which make use of it.

Signed-off-by: Michael Tremer michael.tremer@ipfire.org --- src/initscripts/system/localnet | 1 + 1 file changed, 1 insertion(+)

diff --git a/src/initscripts/system/localnet b/src/initscripts/system/localnet index a16b32e46..0d01bd300 100644 --- a/src/initscripts/system/localnet +++ b/src/initscripts/system/localnet @@ -19,6 +19,7 @@ write_resolv_conf() { ( [ -n "${DOMAINNAME}" ] && echo "search ${DOMAINNAME}" echo "nameserver 127.0.0.1" + echo "options trust-ad" ) > /etc/resolv.conf }