On Thu, Mar 06, 2014 at 02:50:20PM +0000, Stephane Bortzmeyer wrote: > The only place where server authentication could be useful is between > a stub and the first resolver.
I think that's exactly the point that was under discussion, though: How can people who don't want their DNS traffic snooped and analyzed, but have decided for some reason to use 8.8.8.8 anyway, be sure they're talking to the "real" 8.8.8.8? :) -- Evan Hunt -- e...@isc.org Internet Systems Consortium, Inc. _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop