To:
Roy Arends <Roy.Arends@nominum.com>
Cc:
Edward Lewis <lewis@tislabs.com>, Roy Arends <Roy.Arends@nominum.com>, Mark Kosters <markk@netsol.com>, <dnssec@cafax.se>, <namedroppers@ops.ietf.org>
From:
Edward Lewis <lewis@tislabs.com>
Date:
Wed, 4 Jul 2001 15:10:24 -0400
Delivery-Date:
Thu Jul 5 12:17:30 2001
In-Reply-To:
<E15Hr65-000OKy-00@psg.com>
Sender:
owner-dnssec@cafax.se
Subject:
Re: Ideas on opt-in, was Re: I-DACTION:draft-ietf-dnsext-dnssec-opt-in-00.txt
At 2:09 PM -0400 7/4/01, Roy Arends wrote: >The problem is that an administrator can secure a zone as thick as he >wants, a resolver can be tricked into accepting an unsecured record (that >in fact does not exist in the zone) because there is no indication how a Oh. Umm, yeah. I wasn't thinking of data insertion, just data deletion. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=--=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Edward Lewis NAI Labs Phone: +1 443-259-2352 Email: lewis@tislabs.com You fly too often when ... the airport taxi is on speed-dial. Opinions expressed are property of my evil twin, not my employer.