On Jul 17, 2010, at 3:30 05PM, Taral wrote:
> On Sat, Jul 17, 2010 at 7:41 AM, Paul Wouters wrote:
>>> Several are using old SHA-1 hashes...
>>
>> "old" ?
>
> "old" in that they are explicitly not recommended by the latest specs
> I was looking at.
DNSSEC signatures do not need to have a long
On Sat, Jul 17, 2010 at 10:41:10AM -0400, Paul Wouters wrote:
> On Fri, 16 Jul 2010, Taral wrote:
>
> >Neat, but not (yet) useful... only these TLDs have DS records:
>
> The rest will follow soon. And it is not that you had to stop those
> TLD trust anchors just now.
actually, soon is a