It would help if folks who think they see protocol changes coming out of this document would clearly identify the protocol changes they think they're seeing. Eg, the NS RRset ordering issue identified in the message that Pekka cited is not (in my opinion) a protocol change, since the DNS specs are already reasonably clear that RRsets are and always have been unordered.
Many of the recommendations in this draft are what I'd classify as implementation advice, which is something of a grey area, but since this implementation advice follows directly from analysis of bad stuff that's been happening to deployed servers out in the real world, I think it's reasonable to keep the implementation advice in the same document as the analysis that motiviates it unless there's a strong reason to move the advice somewhere else. If the IESG has a problem with this, they'll tell us, and Dave and I can certainly ask our AD for an opinion, but let's not borrow trouble. . dnsop resources:_____________________________________________________ web user interface: http://darkwing.uoregon.edu/~llynch/dnsop.html mhonarc archive: http://darkwing.uoregon.edu/~llynch/dnsop/index.html
