[Dnssec-deployment] Comcast Begins DNSSEC Rollout
Michael Richardson
mcr at sandelman.ca
Thu Oct 21 18:11:23 EDT 2010
>>>>> "Paul" == Paul Wouters <paul at xelerance.com> writes:
>> Did you have to offer the customer the choice to use a
>> non-validating resolver at any point?
Paul> customers smart enough to ask that would probably already know
Paul> the problem is not the ISP :)
Yes, I agree that a customer that asks would have a clue.
But, for a customer who just says, "FIX IT NOW", telling them to use DNS
resolver, "ilikefraud.isp.net" might be necessary. (Alas, of course,
it's just an IP address, so you can't communicate any subtext there...)
--
] He who is tired of Weird Al is tired of life! | firewalls [
] Michael Richardson, Sandelman Software Works, Ottawa, ON |net architect[
] mcr at sandelman.ottawa.on.ca http://www.sandelman.ottawa.on.ca/ |device driver[
Kyoto Plus: watch the video <http://www.youtube.com/watch?v=kzx1ycLXQSE>
then sign the petition.
More information about the Dnssec-deployment
mailing list