Having a differentiated signal for "I don't expect to be authenticated" would be good for draft-ietf-dprive-unauth-to-authoritative. I also agree with the reasoning of the recursive and auth operators who spoke at the mic.
PaulW's "Now you are advertising which DNS servers can easilly be MITMed" is silly because any attacker could test that trivially. --Paul Hoffman
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ dns-privacy mailing list [email protected] https://www.ietf.org/mailman/listinfo/dns-privacy
