CircleID

Comments

AFNIC and DNS Server Redelegation

• Comment posted Dec 14, 2006 9:11 pm PST — by Jay Daley
  I should have added that whilst AXFR is an example of TCP use it is not why .fr require it.  As far as I know they do not require AXFR access to your zone.  They require TCP, which is completely…

• Comment posted Dec 14, 2006 8:59 pm PST — by Jay Daley
  Sorry, but you are completely wrong about the need for TCP.  A client can use TCP whenever it wants, and has to use TCP when the response it gets via UDP is truncated because it is too long.  AXFR is…

Splitting the Root: It's Too Late

• Comment posted Apr 12, 2007 9:12 am PDT — by Jay Daley
  Here is a link (an old one at that) to a report that clearly states that China has not created an alternate root: http://english.people.com.cn/200603/03/eng20060303_247684.html

• Comment posted Apr 11, 2007 10:02 pm PDT — by Jay Daley
  Sorry but I think this article is a bit of FUD. China does not have an alternate root.  Many Chinese PCs have a browser plugin that changes some IDN URLs to add something.cn onto the end.  It might look like…

DNSSEC: Once More, With Feeling!

• Comment posted Dec 15, 2007 9:46 pm PST — by Jay Daley
  Milton Mueller said: I repeat, whatever happens lawyers are going to be involved and the US Commerce dept is going to be involved and therefore politics—global politics—are involved. Let's just be adults and accept that fact. This is the heart…

• Comment posted Dec 15, 2007 9:27 pm PST — by Jay Daley
  Milton: It is fairly apparent that you are confused about DNSSEC but it appears that you might be a tad confused about DNS as well.  Let me explain: When I said the following (which you took out of context): If…

• Comment posted Dec 14, 2007 9:26 pm PST — by Jay Daley
  @Brendan: If you want to pursue the political objective of multiple roots or one root under distributed control then that's your prerogative.  But it is disingenuous to drag poor old DNSSEC into it as a pawn in that game. DNSSEC…

• Comment posted Dec 13, 2007 9:13 pm PST — by Jay Daley
  @Ian: DNSSEC does support multiple roots in the same way that DNS does.  That is the whole point of DNSSEC - it secures the DNS tree from the root of that tree.  If you create another tree then you get…

• Comment posted Dec 13, 2007 9:05 pm PST — by Jay Daley
  Lots of useful stuff here.  One thing I would take issue with is the extraordinary statement that "the DNS is already relatively fragile".  Nothing could be further from the truth.  DNS can survive messages being lost, servers being down, inconsistencies…

New CIRA Whois Policy Strikes Balance Between Privacy and Access

• Comment posted May 09, 2008 1:19 pm PDT — by Jay Daley
  Credit where credit is due please Michael.  The policy being introduced by CIRA is very similar to the policy in place for .uk, which was introduced in 2002.  Our policy also makes the distinction between personal registrants and corporates/organisations, allowing…