[ldns-users] offtopic - was Re: [validns-users] just started with validns - few problems

Paul Wouters paul at nohats.ca
Wed Feb 26 15:38:11 UTC 2014

On Wed, 26 Feb 2014, Jelte Jansen wrote:

> While you could argue the rationale of the NSEC3PARAM record versus
> other ways to signal to auths which nsec3 chain to use, calling it a
> bind hack that got copied into an rfc is misrepresenting history, IIRC
> this came out of a WG workshop where other implementors (hi!) were just
> as present as those from ISC :p

Fait enough

> As it is right now, you certainly can't just leave it out of the zone.

Why not? When is it served as authoritative data? When does a validator
require that record?

>From what I understand, it's a postit note for signers, and signers that
are also authoritative servers in the same process (like bind :) need


More information about the ldns-users mailing list