To:
"D. J. Bernstein" <djb@cr.yp.to>
cc:
iesg@ietf.org, dnsop@cafax.se
From:
Ray Plzak <plzak@ops2.nic.mil>
Date:
Mon, 13 Mar 2000 11:23:26 -0500 (EST)
In-Reply-To:
<20000312203550.29186.qmail@cr.yp.to>
Sender:
owner-dnsop@cafax.se
Subject:
Re: Last Call: Root Name Server Operational Requirements to BCP
Given the fact that by the end of the year most of the gTLDs will either be moving or have moved off of the root servers this does not appear to be a "stupid" goal. The administrators of the gTLDs will have to implement security on their suite of servers. The author's of this document intended this to be specifically for the root zone but also thought fit to pass along the observation(s) that these actions would be appropriate for other administrators such as those of the gTLDs. Now why would that be "stupid"? Ray On 12 Mar 2000, D. J. Bernstein wrote: > > (1) Securing the root zone, without securing any TLDs, is a stupid > goal. It does not protect any DNS users. >