Viktor Dukhovni wrote on 2021-12-01 13:06:
...
...
But I also don't agree with Paul that one needs to be an expert to play
the game. Tools are improving, and spinning up working DNSSEC with Knot,
BIND 9.16+, ... is increasingly easier.
...
with DNSSEC For Humans, we (ISC, at the time) made BIND9 as automatic
and as user friendly as could be done with regard to DNSSEC operations.
other implementations did likewise, especially including OpenDNSSEC.
and if you're an enterprise or hobbyist, that's quite good enough (no
wizards are needed).
but if you're Slack or similar (cloud provider, ISP, MSSP, social
network, xAAS provider), no automation will ever be good enough by
itself (wizards will be needed.)
vixie
--
Sent from Postbox
<https://www.postbox-inc.com/?utm_source=email&utm_medium=siglink&utm_campaign=reach>
_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop
