# File ../../auditor/lib/kasp_auditor/auditor.rb, line 544 def check_nsec(l_rr, types_covered) # Check the policy is not for NSEC3! if !(@config.denial.nsec) log(LOG_ERR, "NSEC RRs included in NSEC3-signed zone") return end # We can check the TTL of the NSEC here check_nsec_ttl(l_rr) # Check RR types check_nsec_types(l_rr, types_covered) if (@last_nsec) check_nsec_next(l_rr, @last_nsec.next_domain) else check_nsec_next(l_rr, nil) end end