FreeBSD Security Advisory FreeBSD-SA-15:11.bind

[Ian Smith]

On Wed, 8 Jul 2015 12:49:12 -0500, Mark Felder wrote:

 > "No workaround is available, but only systems that are manually
 > configured to enable DNSSEC validation are affected." would be a
 > reasonable statement.

Agreed.  DNSSEC may become mandatory, and while surely 'best practice', 
it's not yet required and many resolvers are not yet DNSSEC configured.

cheers, Ian