In article <[email protected]> you write: > >In message <capt1n1kxef0zj_vhuv00taz+39hr6nw19uz5rdxjr3aues5...@mail.gmail.com> >, Ted Lemon writes: >> Mark, I really don't think this is a human rights issue. Is there something >> that will break for you if the secure denial of existence is left in place? > >I shouldn't BE FORCED to hard code special LOCALHOST rules into DNS >tools. Lookups should "just work" like they did before the root >zone was signed.
It seems to me that if someone has enough programming skill to write a DNSSEC verifier for her cache or stub resolver, she has enough skill to treat localhost as a special case. Or she could use unbound which has done this for ages. R's, John _______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
