nanog mailing list archives
Re: Comcast DNSSEC
From: Cameron Byrne <cb.list6 () gmail com>
Date: Tue, 10 Jan 2012 17:43:28 -0800
On Jan 10, 2012 5:11 PM, "Peter Kristolaitis" <alter3d () alter3d ca> wrote:
Wow! Congrats to the Comcast crew, that's absolutely awesome!
+1 Between dnssec and ipv6 Comcast has shown true internet evolution leadership in their *actions*, which really stands out in an industry full of talk. Cb
Definitely interested in hearing any "lessons learned" that you can share
from the exercise.
- Pete On 1/10/2012 6:24 PM, Jeremy Bresley wrote:Hadn't seen this mentioned yet. http://blog.comcast.com/2012/01/comcast-completes-dnssec-deployment.html Comcast has signed all their managed domains, as well as deployed DNSSEC
resolvers for their customers. And they're encouraging others to make the jump to DNSSEC now as well, especially e-comm/banking sites.
Nice work guys, any of the Comcast guys on the list want to give us an
idea how much work is involved in this from a large-scale service provider perspective to do it? Any big caveats you encountered that people should watch out for?
Jeremy "TheBrez" Bresley brez () brezworks com
Current thread:
- Comcast DNSSEC Jeremy Bresley (Jan 10)
- Re: Comcast DNSSEC Peter Kristolaitis (Jan 10)
- Re: Comcast DNSSEC Cameron Byrne (Jan 10)
- Re: Comcast DNSSEC Scott Schmit (Jan 10)
- Re: Comcast DNSSEC Robert Bonomi (Jan 10)
- Re: Comcast DNSSEC Livingood, Jason (Jan 11)
- Re: Comcast DNSSEC Peter Kristolaitis (Jan 10)