It appears that Viktor Dukhovni <dnsop@ietf.org> said: >However, I do think that the skill level required need not always >be or remain "wizard". They had some bad luck running into a not >fully baked stack on the provider end.
While they should have caught the apex CNAME, I can't really blame them for not anticipating that AWS Route 53 would have buggy DNSSEC handling. Wildcards are unusual but they're not *that* unusual. I realize the problem with test suites that the test suite tends to become the de-facto spec, but it might be nice to come up with a list of tests that check for famous bugs. R's, John _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
