On Mon, September 4, 2017 10:26, Jim Reid wrote: > >> On 4 Sep 2017, at 07:12, Walter H. <walte...@mathemainzel.info> wrote: >> >> by the way: why are you discussing about DNSSEC for names that are used >> only locally? > > Why do you seem to assume there are never, ever any DNS security issues on > the local net?
when there are troubles on the local net, DNS security issues are the less problem ... I'd say: "either you trust the local net or not"; > Why would someone want to deliberately configure things to prevent > DNSSEC-aware applications and resolvers from working on the local net? because of its strange signature procedure: a zone doesn't have to be resigned, when it changes ... _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
