Hacker News new | ask | show | jobs
by jcalvinowens 110 days ago
Not true, RFC4035 says all security aware resolvers SHOULD verify the signatures. It's far from pointless when actually implemented. Don't dismiss a whole protocol just because some historical implementations have been half assed.
1 comments
tptacek 110 days ago
The RFC uses "security-aware" to set them apart from ordinary resolvers, which are what every mainstream resolver uses.
link