To:
Zefram <zefram@fysh.org>
cc:
<dnsop@cafax.se>
From:
Robert Martin-Legene <robert@dk-hostmaster.dk>
Date:
Thu, 18 Sep 2003 17:47:38 +0200 (MET DST)
In-Reply-To:
<20030918150220.GB28940@fysh.org>
Sender:
owner-dnsop@cafax.se
Subject:
Re: delegation-only ineffective
On Thu, 18 Sep 2003, Zefram wrote: > >Also, some TLD registries doesn't want anyone to have copies of the entire > >zone, so they choose to run all servers themselves. > > That's something it would be nice to stop. DNS data is supposed to > be public. (Yes, I know, I'm an idealist.) If a formal requirement for > independent entities to be able to serve the zone prevents this kind of > secrecy, that'd be a nice bonus. I think the major reason that registries are blocking AXFR, is because it has become too common that people abuse the information that obtain from it. I'm thinking if that isn't also a little bit of the reason why DNSSEC hasn't been deployed (in any TLDs?). -- Robert Martin-Legène #---------------------------------------------------------------------- # To unsubscribe, send a message to <dnsop-request@cafax.se>.