ARM section on DNSSEC validation missing
I went looking in the ARM for a description of DNSSEC Validation Accept, some sort of permanent negative trust anchor we added in 9.14. I couldn't find it, using the TOC.
In the TOC there is a heading for "Dynamic Trust Anchor Management" and under that, subsections for Validating Resolver and Authoritative Server. For Validating Resolver, there is just this one paragraph,
"Validating Resolver
To configure a validating resolver to use RFC 5011 to maintain a trust anchor, configure the trust anchor using a managed-keys statement. Information about this can be found in the section called “managed-keys Statement Definition and Usage”."
It seems like there should be a whole section about NTAs there. If it is somewhere else, it should at least be linked here. It almost looks like someone accidentally deleted this section when adding the sentence above.
Version Found This was found in https://downloads.isc.org/isc/bind9/cur/9.15/doc/arm/Bv9ARM.html