It appears that Peter Thomassen  <pe...@desec.io> said:
>I suspect it is intentional, because there seems little value in jumping 
>through the NSEC3 extra hoops like hashing and
>dealing with NSEC3PARAM when you don't get any of the benefit NSEC3 was 
>designed for. (Compact NSEC answers prevent zone
>enumeration just as well, if not better.)
The introduction does mention NSEC3.  

It seems worth mentioning that if you can do compact answers, NSEC3 has little 
(no?) benefit.

R's,
John

_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop

Reply via email to