DNSSEC: unsigned RRs in the auth section are not bogus.

Even if they are in a signed zone.
2 files changed