>If you trust TSIG and the machines that you allow to update, then you can >trust dynamic updates. Yes, there are issues, no doubt. Compare this to >the failure rate of entering v6 reverse addresses by hand :-). But to do it securely, then you have to enter key information by hand ... and somehow that seems like a zero-sum gain to me. --Ken