On 10/7/16 7:07 PM, Warren Kumari wrote:
DONE.
I now have:
"Use of NSEC / NSEC3 resource records without DNSSEC validation may
create serious security issues, and so this technique requires DNSSEC
validation."
I could just drop this sentence, but someone (Stephane?) wanted
reinforcement that validation is needed.
I can't find the reference but I remember folks asking to keep it in.
I honestly feel if we took it out, during the IESG review cycle, we
would be asked to put it back in
tim
_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop
