Aren't you forgetting the users in all this thread?
Shouldn't users be able to get the DNS data clean from the actual
authoritative servers or caching servers getting the information from
there? rather than a who-knows-what-is-in-there zone served by a
server which I can't verify?
If DNSSEC were deployed now at the root, problems would be less, but
right now, I would rather be able to get info from the list of
authoritative servers. Yes, I know about man in the middle, still, I
would rather that not be my ISP.
Joao Damas
ISC
On 11 Feb 2007, at 22:54, Joe Abley wrote:
On 11-Feb-2007, at 16:38, Stephane Bortzmeyer wrote:
On Sat, Feb 10, 2007 at 06:01:27PM +0000,
Paul Vixie <[EMAIL PROTECTED]> wrote
a message of 31 lines which said:
do we really need negative-BCP's? that is, do we need a WCP on this
topic?
I don't know. What is the opinion of the group? And of our beloved
chairs? Any example of a WCP already existing in the IETF?
A WCP is just a BCP with a different title, surely. And there are
plenty of examples of RFCs (whether published as BCP or not)
suggesting that things should not be done:
http://www.google.com/search?q=rfc+%22considered+harmful%22
And a volunteer to write one?
I have no problem putting fingers to keyboard if there seems at
least some interest in the result.
Joe
_______________________________________________
DNSOP mailing list
[email protected]
https://www1.ietf.org/mailman/listinfo/dnsop
_______________________________________________
DNSOP mailing list
[email protected]
https://www1.ietf.org/mailman/listinfo/dnsop
