Matthew Pounsett wrote on 2021-09-30 12:12:
... Negative Trust Anchors, most probably. It's standard operating procedure, particularly for the very large operators, to work around zones that are clearly broken and not actually being attacked to essentially turn off DNSSEC validation for those zones for some period of time.
i hope not. because if true, there's no backpressure on sloppy operations. are we really introducing a new animal to this ecosystem that has no predators trying to kill or eat it?
-- Sent from Postbox <https://www.postbox-inc.com>
_______________________________________________ dns-operations mailing list [email protected] https://lists.dns-oarc.net/mailman/listinfo/dns-operations
