On Thursday, February 13, 2025 10:55:47 PM CET John Levine wrote: > It's definitely an unsolved problem, particularly if you would like to sign > stuff within your own network. I do wish people would stop saying it's > easy, just do X, for various versions of X, because it's not.
Honestly, I'd argue that DNSSEC or even DNS itself are not easy. But that it may be easy for the WG - tirelessly working on DNS' core design every day - to forget that it's very intimidating and confusing for outsiders. A while ago I worked on a userbot for Telegram whose original author couldn't distinguish between even something as "mundane" as record types. If memory serves, everything was A to that code. Eventually I rewrote the whole thing, but it made me realize just how far in the weeds we may be here. Let's not pretend that a global hierarchy of names came easy. Or even that it is a uniform structure. -- Met vriendelijke groet, Michael De Roover Mail: [email protected] Web: michael.de.roover.eu.org _______________________________________________ DNSOP mailing list -- [email protected] To unsubscribe send an email to [email protected]
