Verisign brain damage and DNSSec.....Was:Re: What *are* they smoking?

thats one aspect yes. the valdiation chain should tell
  you who signed the delegations. It won't lie.
  you will know that V'sign put that data there.

--bill

How frikking many hacks will we need to BIND9 to work around this braindamage?
One to stuff back in the NXDomain if the A record points there, another to
do something with make-believe DNSsec from them… What’s next?

You mean that you don't like it when the Authority the community places its trust in abuses that power? heh. Go figure. I hope they are sued out of existance. At the least, ICANN needs to do its job. I have a severe issue with changes being made that cause a lot of damage.

-Jack

Well, you can always vote...

http://www.forbes.com/2003/05/01/cx_ceointernetpoll.html

Link courtesy of inet-access.

And whats to say they don’t get around our methods of blacklisting it by changing the IP around every zone update?

Eric Germann wrote:

And whats to say they don't get around our methods of blacklisting it by changing the IP around every zone update?

result=query domain.tld
wild=query *.tld

if result=wild & dontwantwild then result=NXDOMAIN

-Jack