In article
you write:
>In the case where 'localhost' is being passed to DNS resolution software, a
>validating stub (for example inside a web browser) needs a way to know that
>the 'localhost' TLD should be treated as insecure. In that case, the only
>way to accomplish that is ...
... by havin
-- Forwarded message --
From: william manning
Date: Sat, Aug 5, 2017 at 5:33 PM
Subject: Re: [DNSOP] Status of "let localhost be localhost"?
To: John Levine
i think the question hinges on zone completion logic and fully qualified
domain names.
when localhost appears as:
localh