From 05d2e212e6f23ac2fddb9fb86a61e27965b60a83 Mon Sep 17 00:00:00 2001
From: sthen <>
Date: Sun, 21 Jun 2020 16:59:45 +0000
Subject: [PATCH] tidy wording from when dnssec was enabled/disabled/reenabled
 ok kn gsoares

---
 src/etc/unbound.conf | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/etc/unbound.conf b/src/etc/unbound.conf
index 528405a9..775d94fc 100644
--- a/src/etc/unbound.conf
+++ b/src/etc/unbound.conf
@@ -1,4 +1,4 @@
-# $OpenBSD: unbound.conf,v 1.19 2019/11/07 15:46:37 sthen Exp $
+# $OpenBSD: unbound.conf,v 1.20 2020/06/21 16:59:45 sthen Exp $
 
 server:
 	interface: 127.0.0.1
@@ -19,12 +19,12 @@ server:
 	hide-identity: yes
 	hide-version: yes
 
-	# Perform DNSSEC validation. Comment out the below option to disable.
+	# Perform DNSSEC validation.
 	#
 	auto-trust-anchor-file: "/var/unbound/db/root.key"
 	val-log-level: 2
 
-	# Uncomment to synthesize NXDOMAINs from DNSSEC NSEC chains
+	# Synthesize NXDOMAINs from DNSSEC NSEC chains.
 	# https://tools.ietf.org/html/rfc8198
 	#
 	aggressive-nsec: yes