The Debian system administrators
(DSA) have announced
that they will soon be deploying DNSSEC for selected Debian zones.
"The plan is to introduce DNSSEC in several steps so that we can react to issues that arise without breaking everything at once.
We will start with serving signed debian.net and debian.com zones. Assuming nobody complains loudly enough the various reverse zones and finally the debian.org zone will follow. Once all our zones are signed we will publish our trust anchors in ISC's DLV Registry, again in stages.
The various child zones that are handled differently from our normal DNS infrastructure (mirror.debian.net, alioth, bugs, ftp, packages, security, volatile, www) will follow at a later date.
" (Thanks again to Paul Wise.)
to post comments)