Tony Finch wrote:
> Amelia Andersdotter wrote:
>>
>> I have difficulties seeing how a user (within the meaning of individual
>> internet consumer) has any practical choice to other than to share PII
>> with a DNS provider?
>
> Yes, me too.
There’s always the option to run your own recursive, p
Tony Finch wrote:
>
> I think signalling in the hostname has to be a hint rather than an
> assertion, since it's vulnerable to a downgrade attack because delegation
> NS records are unsigned (as Robert pointed out).
Downgrade seems to be an issue with all proposals. To solve them,
there may need