Jim,
On 18/06/2019 13.27, Jim Reid wrote:
On 18 Jun 2019, at 11:13, Bjarni Rúnar Einarsson <[email protected]> wrote:
The SOA record for a TLD contains two DNS names which should be
under the control of the NIC ...
People on this list can probably comment on whether my above
assumption is correct, and whether those are good candidates for
what you have in mind.
Being able to control a zone’s SOA record (or whatever) means just that. No
more, no less. It doesn’t mean someone who has that ability also has the
authority to change the zone’s delegation even though they can manipulate the
zone contents.
You're basically arguing against ACME-style authentication.
While you are not necessarily wrong, people find the approach useful
enough to not worry about who "really" owns a web server, and I suspect
that a conscious decision can be made to not worry about who "really"
owns a TLD in much the same way.
Cheers,
--
Shane
_______________________________________________
DNSOP mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dnsop
