Let's all turn off DNSSEC and be done with it for good. So much time wasted on this.
-
-
-
Doesn't it still remain the best opportunity for having an auditable, cryptographically verified mechanism for integrity of authoritative DNS responses?
- 5 more replies
New conversation -
-
-
The better way is to automate key rotation. If we’re both your registrar and auth DNS, this is exactly what happens. If you use another registrar then you’ll have to wire it up from our web hooks, at least until we roll out CDS/CDNSKEY and that becomes widely supported.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.