This archive is retained to ensure existing URLs remain functional. It will not contain any emails sent to this mailing list after July 1, 2024. For all messages, including those sent before and after this date, please visit the new location of the archive at https://mailman.ripe.net/archives/list/[email protected]/

[dns-wg] DNSSEC - DS RR provisioning

Previous message (by thread): [dns-wg] DNSSEC - DS RR provisioning
Next message (by thread): [dns-wg] Re: DNSSEC - DS RR provisioning

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Paul Wouters paul at xelerance.com
Fri Nov 13 23:57:36 CET 2009

On Fri, 13 Nov 2009, Mathieu Arnold wrote:

> | 3. If you operate a recursive server, where to do plan to get DNSSEC
> | public keys (for example, ISC's DLV)?
>
> Well, obviously, there are two cases here :
> 1) the root is signed, that's the only key I'll ever need (sight), and I'll
> get it through the proper channels that will be put up at that time.

Only if you're willing to wait 2 years on .com to get signed.

DLV is still useful after the root is signed and before .com is signed.
The same applies for other unsigned TLD's, but most people will ignore those.

Paul

Previous message (by thread): [dns-wg] DNSSEC - DS RR provisioning
Next message (by thread): [dns-wg] Re: DNSSEC - DS RR provisioning

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[ dns-wg Archives ]