> On May 11, 2018, at 10:34 AM, Warren Kumari <warren at kumari.net> wrote: > > I'm part of the DNSSEC Brigade, but is a signed reverse necessary? Paul Wouters might comment here, IIRC some IPSEC implementations do opportunistic IPSEC with keys in signed reverse zones... -- Viktor.