[dns-operations] IPv6 PTR best practice

Tony Finch dot at dotat.at
Fri May 11 16:13:30 UTC 2018

Warren Kumari <warren at kumari.net> wrote:
> ​Well, that's only true if you sign your reverse zones, ​yes? I'm part of
> the DNSSEC Brigade, but is a signed reverse necessary?

Well, people would be kind of upset if someone poisoned a cache
with NXDOMAIN for our mail server PTRs.

If you think reverse DNS is not worth DNSSEC, why are you even going to
the effort to synthesize bulshytt records? Might as well just leave it

f.anthony.n.finch  <dot at dotat.at>  http://dotat.at/
Northeast Viking, North Utsire, South Utsire, Northeast Forties: Variable 3 or
4, becoming southeasterly 4 or 5. Slight or moderate. Mainly fair. Moderate or
good, occasionally poor.

More information about the dns-operations mailing list