<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body>
DNSSEC verification is the responsibility of the DNS server, and not
of the client side. The DNS server the client connects to performs
the actual recursive lookups and performs the DNSSEC validation, so
yes, you need to make sure the DNS server you are using is trusted.<br>
<br>
<div class="moz-cite-prefix">On 1/13/22 8:11 AM, Anant via c-ares
wrote:<br>
</div>
<blockquote type="cite"
cite="mid:CAKkFw4uafk3RZ7zpp6Tv9mdmwB8_JoNqiJQ8BxTLMwyBwO6H3g@mail.gmail.com">
<meta http-equiv="content-type" content="text/html; charset=UTF-8">
<div dir="ltr">
<div class="gmail_default" style="font-family:courier
new,monospace">Hi,</div>
<div class="gmail_default" style="font-family:courier
new,monospace"><br>
</div>
<div class="gmail_default" style="font-family:courier
new,monospace">Do we have support for DNSSEC in 1.18.1?</div>
<div>
<div dir="ltr" class="gmail_signature"
data-smartmail="gmail_signature"><br>
</div>
<div dir="ltr" class="gmail_signature"
data-smartmail="gmail_signature"><span class="gmail_default"
style="font-family:courier new,monospace">I</span><span
class="gmail_default" style="font-family:courier
new,monospace"> am exploring the src and see that there
are some relevant changes in header files but I do not see
that in query and answer handling.</span></div>
<div dir="ltr" class="gmail_signature"
data-smartmail="gmail_signature"><span class="gmail_default"
style="font-family:courier new,monospace"></span>
<div dir="ltr"><span style="font-family:courier
new,monospace">Regards</span><br
style="font-family:courier new,monospace">
<span style="font-family:courier new,monospace">Anant</span><br>
</div>
</div>
</div>
</div>
<br>
<fieldset class="moz-mime-attachment-header"></fieldset>
</blockquote>
<br>
</body>
</html>