In Warren's review of the draft, he says:I think that resolvers SHOULD send DO, and should try validate (if it gets signed responses). This is pointless at the moment, but if / when we end up with signed root-servers.net (or foo.bar) it would be nice if the right things were already being done.
This seems like a good start for a discussion. --Paul Hoffman _______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
