DNSSEC mailing list

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Roy Arends <Roy.Arends@nominum.com>
Cc: Edward Lewis <lewis@tislabs.com>, Roy Arends <Roy.Arends@nominum.com>, Mark Kosters <markk@netsol.com>, <dnssec@cafax.se>, <namedroppers@ops.ietf.org>
From: Edward Lewis <lewis@tislabs.com>
Date: Wed, 4 Jul 2001 15:10:24 -0400
Delivery-Date: Thu Jul 5 12:17:30 2001
In-Reply-To: <E15Hr65-000OKy-00@psg.com>
Sender: owner-dnssec@cafax.se
Subject: Re: Ideas on opt-in, was Re: I-DACTION:draft-ietf-dnsext-dnssec-opt-in-00.txt

At 2:09 PM -0400 7/4/01, Roy Arends wrote:
>The problem is that an administrator can secure a zone as thick as he
>wants, a resolver can be tricked into accepting an unsecured record (that
>in fact does not exist in the zone) because there is no indication how a

Oh. Umm, yeah.  I wasn't thinking of data insertion, just data deletion.

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=--=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Edward Lewis                                                NAI Labs
Phone: +1 443-259-2352                      Email: lewis@tislabs.com

You fly too often when ... the airport taxi is on speed-dial.

Opinions expressed are property of my evil twin, not my employer.

References:
- Re: Ideas on opt-in, was Re: I-DACTION:draft-ietf-dnsext-dnssec-opt-in-00.txt
  - From: Edward Lewis <lewis@tislabs.com>

Prev by Date: Re: ttl problems in DNSSEC
Next by Date: Re: I-D ACTION:draft-ietf-dnsext-dnssec-opt-in-00.txt
Prev by thread: Re: Ideas on opt-in, was Re: I-D ACTION:draft-ietf-dnsext-dnssec-opt-in-00.txt
Next by thread: Re: Ideas on opt-in, was Re: I-D ACTION:draft-ietf-dnsext-dnssec-opt-in-00.txt
Index(es):
- Date
- Thread

Home | Date list | Subject list