> On 11 Jun 2019, at 17:58, Jonas Frey <[email protected]> wrote: > >>> Run a open resolver and secure it propely >> These two things are mutually exclusive. Sorry. >> > > Well, then all of these (running open resolvers) must be wrong: > - Google > - Cloudflare > - Quad9 > ...
They’ve taken business decisions that the risks of operating open resolvers are worth the rewards. And AFAICT, they don't intermingle recursive and authoritative DNS on the same server(s). > Anyway, isnt this the wrong discussion? The topic is wether RIPE should > block, warn or pass these resolvers. Indeed.
signature.asc
Description: Message signed with OpenPGP
