Re: That's not what El Reg said -

Author	All Replies
Noah Vail Son made my Avatar Premium join:2004-12-10 Lorton, VA kudos:1 Reviews: ·Bright House ·Sprint Mobile Br.. 2 edits	reply to Karl Bode Re: That's not what El Reg said said by Karl Bode: said by you : Nothing there to say the regular Joe Internet is going to lose service. said by The Register : Will DNSSEC kill your internet?" ]He tries to downplay his own inflammatory title, but he's still making a bigger deal of this than even the experts quoted in his own story are. Here's what isn't sorting out for me. A DNS Resolver - directly downstream from the Root - has a 512 byte limit on it's upstream DNS communications. and All Root DNS Packets are suddenly larger than 512 bytes due to DNS certificates. then Doesn't that effectively kill all future Root DNS Updates for that DNS Resolver (until the limit is fixed)? NV edit:seperate 2 issues into 2 posts. -- In my perfect religion, a giant hole appears and sucks up all the lousy people. I call it the Crapture.
	to forum · permalink · 2010-04-29 10:31:08 ·
nweaver join:2010-01-13 Napa, CA	No... a: Such resolvers are likely to not ask for DNSSEC at all. b: Even if they do, they will take a timeout and retry by TCP, which slows things down (by a couple of seconds), but otherwise the results still work. And for the root, queries hit the root so rarely that you're likely to never notice this timeout anyway.
	to forum · permalink · 2010-04-30 10:55:58 ·

No, DNSSEC Upgrades Won't Break The Internet Next Week > That's not what El Reg said