[arin-ppml] ARIN discontinuing DNSSEC capability to legacy holders

Bill Woodcock woody at pch.net
Thu Oct 4 14:00:57 EDT 2018



> On Oct 4, 2018, at 9:29 AM, Michael Sinatra <michael+ppml at burnttofu.net> wrote:
> I have received word of an apparent change in ARIN operational policy...
> ...no longer accepting DNSSEC DS records for reverse DNS for those resources that are not covered by RSA or LRSA.  This is a change from current operational practice, and it effectively disables the *community's* ability to validate reverse DNS for these holders.

This is an unconscionable roll-back of a critical security feature of the Internet.  This cannot be allowed to move forward.

                                -Bill

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: Message signed with OpenPGP
URL: <https://lists.arin.net/pipermail/arin-ppml/attachments/20181004/52b27fc3/attachment.sig>


More information about the ARIN-PPML mailing list