Quite, and completely eliminate the risk of a DDoS attack on the root servers. Very easy today when the root file is 200 nodes. But what is it going to be like after ICANN has managed to sell TLDs to everyone in the F500 and so on? Might be some interesting fireworks there as 'non-profit' ICANN charges $50,000 per application but the root zone operators are unpaid. Nice little earner that. Trebles and pay rises all round. Beckstrom is at least a serious contender for whom the ICANN money might be considered a competitive salary. The same could not be said of his predecessor with a straight face. On Wed, Jul 21, 2010 at 4:08 AM, Iljitsch van Beijnum <iljitsch@xxxxxxxxx> wrote: > On 21 jul 2010, at 5:27, Mark Andrews wrote: > >> The only keys that have to be widely distributed are those for the >> root zone and that's a similar problem to distributing the list of >> root nameservers and their addresses. Millions of recursives server >> operators have managed that. > > Would be great if the list of root servers and list of trusted root certificates could be distributed in one easy to install file... -- Website: http://hallambaker.com/ _______________________________________________ Ietf mailing list Ietf@xxxxxxxx https://www.ietf.org/mailman/listinfo/ietf