[dns-operations] Quad9 DNSSEC Validation?
Mark Andrews
marka at isc.org
Mon Mar 1 18:46:38 UTC 2021
It also doesn’t help that Whois is not particularly useful. It has improved but if you can’t report faults they don’t get fixed.
--
Mark Andrews
> On 2 Mar 2021, at 05:29, Paul Vixie <paul at redbarn.org> wrote:
>
> On Mon, Mar 01, 2021 at 08:21:21AM -0500, Jim Popovitch via dns-operations wrote:
>> ...
>>
>> Over on the email side, I know of several instances in the past 5+ years
>> where email providers have had to disable TLS and/or DANE/DNSSEC checks
>> (i.e. postfix's smtp_tls_policy_maps) for .mil and .gov domains due
>> mostly in part for poor key rollover management practives/monitoring.
>
> so, this is a game of "chicken" where the wrong people keep flinching.
>
> --
> Paul Vixie
> _______________________________________________
> dns-operations mailing list
> dns-operations at lists.dns-oarc.net
> https://lists.dns-oarc.net/mailman/listinfo/dns-operations
More information about the dns-operations
mailing list