Orie Steele via Datatracker <[email protected]> writes: Comments inline, thanks for the feedback Orie.
> Perhaps use similar text to draft-ietf-dnsop-must-not-sha1-06: > > ``` > Validating resolvers deployed in more security strict environments MAY wish to > treat these RRSIG records as an unsupported algorithm. ``` SHA1 has a bit more leniency than gost intentionally. No one should really use GOST (2001) at all any longer, while SHA1 still has some deployment. That's why the text is different. -- Wes Hardaker USC/ISI _______________________________________________ DNSOP mailing list -- [email protected] To unsubscribe send an email to [email protected]
