[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

hat tip to .gov hostmasters

Subject: hat tip to .gov hostmasters
From: fweimer at bfk.de (Florian Weimer)
Date: Mon, 22 Sep 2008 16:56:20 +0200
In-reply-to: <[email protected]> (Jason Frisvold's message of "Mon, 22 Sep 2008 10:52:42 -0400")
References: <[email protected]> <[email protected]>

* Jason Frisvold:

> On Mon, Sep 22, 2008 at 10:34 AM, Scott Francis <darkuncle at gmail.com> wrote:
>> nice to see a wholesale DNSSEC rollout underway (I must confess to being a
>> little surprised at the source, too!). Granted, it's a much more manageable
>> problem set than, say, .com - but if one US-controlled TLD can do it, hope
>> is buoyed for a .com rollout sooner rather than later (although probably not
>> much sooner :)).
>
> I'm not much up on DNSSEC, but don't you need to be using a resolver
> that recognizes DNSSEC in order for this to be useful?

Correct, you need a validating, security-aware stub resolver, or the
ISP needs to validate the records for you.

-- 
Florian Weimer                <fweimer at bfk.de>
BFK edv-consulting GmbH       http://www.bfk.de/
Kriegsstra?e 100              tel: +49-721-96201-1
D-76133 Karlsruhe             fax: +49-721-96201-99

Follow-Ups:
- hat tip to .gov hostmasters
  - From: karnaugh at karnaugh.za.net (Colin Alston)
- hat tip to .gov hostmasters
  - From: kmedcalf at dessus.com (Keith Medcalf)
- hat tip to .gov hostmasters
  - From: drc at virtualized.org (David Conrad)

References:
- hat tip to .gov hostmasters
  - From: darkuncle at gmail.com (Scott Francis)
- hat tip to .gov hostmasters
  - From: xenophage0 at gmail.com (Jason Frisvold)

Prev by Date: hat tip to .gov hostmasters
Next by Date: hat tip to .gov hostmasters
Previous by thread: hat tip to .gov hostmasters
Next by thread: hat tip to .gov hostmasters
Index(es):
- Date
- Thread