On Fri, Feb 10, 2012 at 7:37 AM, Stephane Bortzmeyer <bortzme...@nic.fr>wrote:
> On Thu, Feb 09, 2012 at 12:38:42PM -0800, > Casey Deccio <ca...@deccio.net> wrote > a message of 67 lines which said: > > > Actually, it should, in the spirit of DNSSEC. > > OK, so there is nothing that can be done at the registry level. No. > Only > the resolver admin can use DNSSEC to solve the ghost domain problem, > by enabling DNSSEC validation. Correct? > Yes. Unless future specification or implementation designated that delegation follow the same model as trust--that is, that a delegation only last as long as the parent said it did. But I'm not sure that's the right approach, and this seems to me to be somewhat of a niche problem. Casey
_______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
