by Lightning » Tue Apr 13, 2010 11:31 pm
This subject really has a LOT of gray area and there is no clear cut answer. It shows that both EDNS and DNSSEC are both enabled. But it also says it is only potentially a problem if the announced buffer size is greater than the measured buffer size. BUT it continues with the size difference should be greater than 300 bytes to be a real problem and the actual size difference is only 257 bytes with the JAVA test and 253 bytes using the Linux dig test.
So it all ends up running you around in a circle and no real answer to which even I could come up with a clear cut answer to give to you. So I guess we will find out the truth soon enough.
If you are afraid that you might make a mistake. The chances are high that you will never learn anything.