On Jan 22, 2018, at 8:45 AM, Paul Wouters <p...@nohats.ca> wrote: > I'm trying not to define any DNS terms in this document and stay out of > any character/domain/hostname discussion. How about: > > The content of INTERNAL_DNS_DOMAIN and INTERNAL_DNSSEC_TA may be passed > to another (DNS) program for processing. As with any network input, the > content should be considered untrusted and handled accordingly.
Yep, that works for me. With that and the other change you said was fine, I think this is quite ready for IETF Last Call. --Paul Hoffman _______________________________________________ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec