Scott, On Apr 15, 2012, at 6:28 PM, Scott Schmit wrote: > It's manual for now...until the utter lack of consequences for screwing > up (everybody can still get to the broken zones just fine) junks up the > NTA lists.
Given the implicit assertions associated with NTA (specifically, that the validator operator is asserting that the zone in question is not being spoofed despite the fact that validation is failing), I have some skepticism that folks will let stuff like this 'junk up NTA lists'. > If the resolver is unable to validate the domain, it MAY return a false > result leading the user to a host that will explain the error and how to > notify the domain owner of the problem. Not sure I follow -- are you proposing additional error codes in stub resolver responses? Regards, -drc _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
