Not exactly what you asked, but a registrar example: Openprovider requires registrant to provide the DNSKEY, not DS, to activate and manage DNSSEC.
Rubens > On 22 Jan 2020, at 19:13, Tony Finch <d...@dotat.at> wrote: > > Are there any registries that configure secure delegations from DNSKEY > records (and do their own conversion to DS records) rather than accepting > DS records from the registrant? I think I have heard that .de is one. > Looking at OpenSRS as an example of a registrar that supports lots of > TLDs, I see that they don't support DNSSEC for .de > http://opensrs.help/chart and their API only supports DS records > https://domains.opensrs.guide/docs/set_dnssec_info > > Also, I am uncomfortable with the endianness of their support domain names... > > Tony. > -- > f.anthony.n.finch <d...@dotat.at> http://dotat.at/ > responsible stewardship of the earth and its resources > _______________________________________________ > dns-operations mailing list > dns-operations@lists.dns-oarc.net > https://lists.dns-oarc.net/mailman/listinfo/dns-operations
signature.asc
Description: Message signed with OpenPGP
_______________________________________________ dns-operations mailing list dns-operations@lists.dns-oarc.net https://lists.dns-oarc.net/mailman/listinfo/dns-operations
