{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreiejyfkz4zv6h2rugohvjdql4hzsgr3jxlnbm6hfeqx24amrwbgxba",
    "uri": "at://did:plc:ivbknywyskln22er3nkssdhl/app.bsky.feed.post/3mkhgwhyxxg52"
  },
  "path": "/t/pre-rfc-dns-domains-as-package-namespaces/24202#post_20",
  "publishedAt": "2026-04-27T06:00:31.000Z",
  "site": "https://internals.rust-lang.org",
  "textContent": "tcsc:\n\n> Regarding DNSSEC, DoH (DNS-over-HTTPS) is more widely deployed and has superior security properties. So I don't think spoofed DNS data is a real risk.\n\nDoH protects the communication with the recursive resolver using TLS. DNSSEC protects the communication between the recursive resolver and the nameserver using offline signatures. They are complementary to each other.",
  "title": "[Pre-RFC] DNS domains as package namespaces"
}