Philip Homburg <[email protected]> writes: > It seems to me that option 2a would lead to a weird conflict where validating > resolvers MUST support SHA1 and MUST NOT ever use it.
The intent was that implementations must still support it, because it won't disappear over night. And resolver operators must not ever use it, but we know some will ignore that for a while. IE, the shift for deployments is not instantaneous. -- Wes Hardaker USC/ISI _______________________________________________ DNSOP mailing list -- [email protected] To unsubscribe send an email to [email protected]
