From the mailing list traffic, it seems like some of y'all only care about
getting resolver information from DNS (hopefully DNSSEC-signed), while others
are fine to use HTTPS with web PKI authentication, particularly when DNSSEC
signing is not possible. We have left both methods in the main dra
Hi Klaus,
On 5/29/19 9:34 AM, Klaus Malorny wrote:
> On 28.05.19 21:14, Matthijs Mekking wrote:
>> Hi Klaus,
>>
>
> Hi Matthijs,
>
>> I provided responses inline.
>
> I too.
>
>>
>> On 5/28/19 5:49 PM, Klaus Malorny wrote:
>>>
>>>
>>> Hi all,
>>>
>>> [...]
>>
>> I am not sure what text in Sect
Hi all,
while still struggling with the basic ANAME processing (as described in my other
mail), I wondered whether with DNSSEC, an authoritative name server MAY, SHOULD
or MUST prove the non-existence of an ANAME record when it receives an A or
query and no sibling ANAME record exists
On 28.05.19 21:14, Matthijs Mekking wrote:
Hi Klaus,
Hi Matthijs,
I provided responses inline.
I too.
On 5/28/19 5:49 PM, Klaus Malorny wrote:
Hi all,
[...]
For authoritative servers that receive A or requests, the address
records shall appear only once: in the answer section
