On Tue Oct 24 01:56:40 2017, each@isc.org wrote:
> > Are we in agreement that HMAC-MD5 is the best choice for default?
> 
> I'm guessing you meant "is not"?
> 
> I definitely want the default to change, but since we've already shipped
> beta, it shouldn't change for 9.12. I've pushed code to the branch that
> prints a warning message and promises to change the default in the future.

=> as I pushed alternative to HMAC-MD5 a long time ago you already
know my opinion. BTW most arguments against MD5 are applicable so
will be applied to SHA-1 (or with other words in "no reason at all"
IMHO there is a missing "technical").