!tCyGickeVqkHsYjWnh:nixos.org

NixOS Networking

914 Members
Declaratively manage your switching, routing, wireless, tunneling and more.265 Servers

Load older messages

SenderMessageTime
16 Jun 2025
@hexa:lossy.networkhexaI've been in the resolved dnssec issues years ago04:26:21
@hexa:lossy.networkhexaI'04:26:28
@hexa:lossy.networkhexa* I've killed dnssec support locally before it hit nixpkgs04:26:37
@hexa:lossy.networkhexabecause it wouldn't properly work and break resolution needlessly04:26:53
@emilazy:matrix.orgemilythe old DNSSEC issues are pretty depressing yeah04:27:15
@hexa:lossy.networkhexasystemd sometimes does to much and the developers are spread to thin04:27:19
@emilazy:matrix.orgemilyI think they have mostly been fixed by now but systemd upstream attitude to bug reports is depressing04:27:29
@hexa:lossy.networkhexaso resolved was built and remained broken for years04:27:33
@emilazy:matrix.orgemilyyeah I've also followed it04:27:45
@emilazy:matrix.orgemilyit doesn't seem like great software04:27:50
@hexa:lossy.networkhexaI like resolved for its DoT capability04:28:13
@emilazy:matrix.orgemilya good modern API for DNS for the Linux platform is something that we do need though, which is why I expect the NSS/D-Bus parts of it to be used increasingly04:28:18
@emilazy:matrix.orgemilyfor better or worse04:28:24
@hexa:lossy.networkhexaand for its per interface dns resolution04:28:30
@emilazy:matrix.orgemilyunless the Flatpak people make some xdg-dns-portal or something that people adopt instead04:28:39
@emilazy:matrix.orgemily(which would be its own headache…)04:28:43
@hexa:lossy.networkhexa* and for its per interface dns resolution scoping04:28:46
@hexa:lossy.networkhexayeah, glibc is a poor API, I agree04:29:04
@emilazy:matrix.orgemily(I wish it could do DoQ/DoH3, then I wouldn't need a separate proxy…)04:29:17
@hexa:lossy.networkhexaI have no doubts that the recursor will follow04:29:22
@hexa:lossy.networkhexa* I have no doubts that the recursors will follow04:29:37
@hexa:lossy.networkhexaso to get back to the root of the problem04:30:31
@hexa:lossy.networkhexa should systemd.network.enable also enable resolved when useLocalResolver is set? 04:31:11
@emma:rory.gay@emma:rory.gayone of my previous matrix servers made resolved crash outright04:31:42
@hexa:lossy.networkhexaevery local resolver uses 127.0.0.1 / ::1, resolved uses 127.0.0.5304:31:44
@hexa:lossy.networkhexa should resolved maybe just assert on useLocalResolver? 04:32:22
@emilazy:matrix.orgemily it already asserts on resolvconf 04:32:56
@emilazy:matrix.orgemily do you actually see fighting over resolv.conf? 04:33:13
@emilazy:matrix.orgemilyor just the local one being ignored entirely04:33:17
@hexa:lossy.networkhexaone being ignored04:33:28

Show newer messages

Back to Room ListRoom Version: 6