> On 30 Jan 2026, at 1:19 pm, Jim Reid <[email protected]> wrote: > > > >> On 30 Jan 2026, at 19:24, Ben Schwartz <[email protected]> >> wrote: >> >> Can, and should, the IETF advise DNS root zone signers to adjust their >> behavior to improve support for IXFR? > > Maybe, maybe not. Before the IETF starts solutioneering on this topic, > gathering more data would be advisable: ie is there a problem here that needs > fixing? Optimising for root zone ixfrs is all very well in the abstract and I > recognise it's at least a theoretical problem. But would it make a material > difference? >
I tend to agree with Jim here - Its a signed object, and the client can validate the object's currency and authenticity based on the success of authenticating the ZONEMD signature. How the client obtained the object is, in my mind. a secondary consideration. Yes, it would be good if there were more than one access method and good if there were multiple sources to use, but I don't necessarily see why it would be productive effort for the IETF to head into engineering of IXFR support by root servers. Geoff _______________________________________________ DNSOP mailing list -- [email protected] To unsubscribe send an email to [email protected]
