On 11/21/2013 07:33 AM, Jay Daley wrote:
On 21/11/2013, at 6:13 am, Gavin Brown <gavin.brown@centralnic.com> wrote:
On 20/11/2013 23:00, John Levine wrote:
Yep - you're only allowed SOA, apex NS, glue, DNSSEC records and delegations - nothing else.
That's at the apex of the TLD.
By my count _whois._tcp.tld is two levels down.
_tcp.tld could not be delegated as "_tcp" is not permissable as a delegation.
Unless ICANN has redefined the word 'delegation' this is not a delegation as there are no NS records for _tcp.
The standard Appendix A in the gTLD Registry Agreement states that other records can be added, once an RSEP evaluation has taken place "to determine whether the service would create a risk of a meaningful adverse impact on security or stability of the DNS".
That seems sensible but I wonder if it could be short cut on the basis that 20 or so TLDs including some of the largest already have this record and the world has not ended?
Not to mention the >60 TLDs with TXTs, the most popular one being the "generation time" of the zone. Hugo