On 2013-04-04, at 15:45, Jim Reid <j...@rfc1035.com> wrote: > On 3 Apr 2013, at 16:11, Paul Wouters <p...@nohats.ca> wrote: > >> It's the vendors of equipment supporting DNSSEC that have >> the real issues. If they shipped with a root anchor, and their stuff >> is offline for 5 years and turned on, their DNS will be broken and 5011 >> isn't going to be useful to them..... > > Fair enough Paul, but how much of a problem could that realistically be and > is it worth bothering about?
I tend to think that regardless of whether the operator of a device is technical or not, if you pull a 5-year-old anything out of the cupboard and plug it in only to find it doesn't work, that's almost expected behaviour. The astonishment comes if it *does* work. Joe _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop