[dns-operations] renesys blog: Identity Theft Hits the Root Name Servers

Edward Lewis Ed.Lewis at neustar.biz
Tue May 20 13:05:03 UTC 2008

At 14:36 +0200 5/20/08, Florian Weimer wrote:
>With my spare-time vendor hat on, I wonder if future transitions might
>face similar issues.  In that case, it might make sense to provide a
>signed, vendor-specific list of the current root servers, so that they
>can be changed automatically without a software upgrade (or a
>configuration change).

s/current root servers/current ICANN root servers/

I don't mean to "support" alternate roots - but the "global public 
Internet" isn't the only network using DNS.

Perhaps here is a time to plug IETF work that might apply here.

 From https://www3.ietf.org/proceedings/08mar/minutes/dnsop.txt:

#5) Current & New Topics                             [ 16:05 {audio 0:59:23} ]
#   o Design Team on
#     "Requirements for a Nameserver Configuration and Control Protocol"
#     Jaap gives a short overview:
#	4 IETFs ago - protocol proposal, going nowhere
#	2 IETFs ago - design team set up to produce wish list
#	little happening now - unfinished, rough document
#	No final conclusion what to do, still working, but
#	slowly.
#        The lack of progress to date does not indicate lack of interest.
#	Design team is supposed to meet right after this dnsop session.

Edward Lewis                                                +1-571-434-5468

Never confuse activity with progress.  Activity pays more.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.dns-oarc.net/pipermail/dns-operations/attachments/20080520/64e9df80/attachment.html>

More information about the dns-operations mailing list