> On Nov 16, 2016, at 15:09, Ondřej Surý <ondrej.s...@nic.cz> wrote: > > Hi, > > I read the document and I believe that the document goes to far > to recommend the vendors how to implement the knobs in their > software here: > > It is recommended that resolvers that implement Aggressive Negative > Caching provide a configuration switch to disable the feature. > Separate configuration switches may be implemented for the aggressive > use of NSEC, NSEC3 and wildcard records, and it is recommended to > enable aggressive negative caching by default. > > I would recommend (not strongly) dropping this paragraph.
I agree. It should not be part of the standard. Recommendations like these can quickly be obsoleted by operational experience. Paul _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop