[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [DNSOP] Fw: New Version Notification for draft-bellis-dns-recursive-discovery-00

To: Joe Abley <jabley at hopcount.ca>
Subject: Re: [DNSOP] Fw: New Version Notification for draft-bellis-dns-recursive-discovery-00
From: Mark Andrews <marka at isc.org>
Date: Wed, 21 Oct 2009 12:45:08 +1100
Cc: Ray.Bellis at nominet.org.uk, dnsop at ietf.org, Alex Bligh <alex at alex.org.uk>, Florian Weimer <fweimer at bfk.de>
Delivered-to: dnsop at core3.amsl.com
In-reply-to: Your message of "Tue, 20 Oct 2009 19:38:19 EDT." <1F61DD04-14A6-4349-8650-9CF27D27C3BC at hopcount.ca>
List-archive: <http://www.ietf.org/mail-archive/web/dnsop>
List-help: <mailto:dnsop-request@ietf.org?subject=help>
List-id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-post: <mailto:dnsop@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
References: <OFA656600E.F5229B3D-ON80257650.005247BF-80257650.00527644 at nominet.org.uk> <82skde36c9.fsf at mid.bfk.de> <DE23E9BF50E437E2D5CA65C8 at Ximines.local> <82ljj61gle.fsf at mid.bfk.de> <200910202329.n9KNT56j048843 at drugs.dv.isc.org> <1F61DD04-14A6-4349-8650-9CF27D27C3BC at hopcount.ca>
Sender: marka at isc.org

In message <1F61DD04-14A6-4349-8650-9CF27D27C3BC at hopcount.ca>, Joe Abley writes
:
> 
> On 2009-10-20, at 19:29, Mark Andrews wrote:
> 
> >> ARPA will soon be signed, so I don't think this is much to worry
> >> about.  If the powers that be finally agree to make NXDOMAIN/NODATA
> >> synthesis the default in the upcoming minor DNSSEC revision, this  
> >> will
> >> also help to cut down the number of requests.
> >
> > And LOCAL.ARPA would need to be a unsigned delegation.
> 
> Could you explain this? The draft under discussion specifies that  
> LOCAL.ARPA is not to be delegated at all, so your sentence above  
> confuses me.

For LOCAL.ARPA to be accepted you need a break in the DNSSEC trust
chain.  You can only break a trust chain at a delegation.
 
> Joe
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: marka at isc.org

Follow-Ups:
- Re: [DNSOP] Fw: New Version Notification for draft-bellis-dns-recursive-discovery-00
  - From: Florian Weimer

References:
- [DNSOP] Fw: New Version Notification for draft-bellis-dns-recursive-discovery-00
  - From: Ray . Bellis
- Re: [DNSOP] Fw: New Version Notification for draft-bellis-dns-recursive-discovery-00
  - From: Florian Weimer
- Re: [DNSOP] Fw: New Version Notification for draft-bellis-dns-recursive-discovery-00
  - From: Alex Bligh
- Re: [DNSOP] Fw: New Version Notification for draft-bellis-dns-recursive-discovery-00
  - From: Florian Weimer
- Re: [DNSOP] Fw: New Version Notification for draft-bellis-dns-recursive-discovery-00
  - From: Mark Andrews
- Re: [DNSOP] Fw: New Version Notification for draft-bellis-dns-recursive-discovery-00
  - From: Joe Abley

Prev by Date: Re: [DNSOP] Fw: New Version Notification for draft-bellis-dns-recursive-discovery-00
Next by Date: Re: [DNSOP] draft-yao-dnsop-idntld-implementation-00 and DNAME
Previous by thread: Re: [DNSOP] Fw: New Version Notification for draft-bellis-dns-recursive-discovery-00
Next by thread: Re: [DNSOP] Fw: New Version Notification for draft-bellis-dns-recursive-discovery-00
Index(es):
- Date
- Thread