alt Hacker NewsIf it turns out the DNSSEC issue was caused by threat actors, this downstream effect could very well have been the reason to do it.
If it turns out the DNSSEC issue was caused by threat actors, this downstream effect could very well have been the reason to do it.
It is indeed a bit sad that Cloudflare had to turn off DNSSEC completely. But I completely understand that they don't have a production-ready, tested path to override DNSSEC validation for only some domains.