On Wed, Mar 05, 2014 at 04:38:20PM +0000, Tony Finch <d...@dotat.at> wrote a message of 13 lines which said:
> > For authentication, we have DNSSEC :-) > > DNSSEC authenticates data not servers. See my reply to Duane. Athenticating an autoritative name server or a forwarder has little value (because they could have cheated and changed the data). The only place where server authentication could be useful is between a stub and the first resolver. _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop