This discussion would be better if people took warren’s example and then read the draft before commenting.
I will watch the discussion before responding further. Thanks Paul Sent from mobile device > On Nov 27, 2018, at 01:43, Paul Hoffman <[email protected]> wrote: > >> On Nov 26, 2018, at 10:36 AM, Ted Lemon <[email protected]> wrote: >> On Mon, Nov 26, 2018 at 1:29 PM Paul Hoffman <[email protected]> wrote: >> Once you are inside a network (the N in VPN), it's "my network, my policy" >> all over again. >> >> Can you unpack what you mean by this? I assume you don't mean that we >> should provide a mechanism whereby network operators can automatically >> override DNSSEC trust anchors! > > For names that are only available within a trusted network, yes I really mean > that. > > --Paul Hoffman > > _______________________________________________ > DNSOP mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/dnsop _______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
