On Tue, Sep 08, 2009 at 12:35:46PM -0700, David Conrad <d...@virtualized.org> wrote a message of 56 lines which said:
> Perhaps the solution is to not use DLV? Sure, every DNS resolver sysadmin should follow the various trust anchors (remember there are not only TLD) and update them when they change. And you claim it would be operationally easier and safer than DLV? Today, very few people check the DNSSEC signatures (otherwise, the failure would have been detected much earlier). Not using DLV would make this number go from "a very small number of geeks" to "near zero". _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop