[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Forgery Resistance phase #2

To: Paul Hoffman <paul.hoffman@vpnc.org>, namedroppers@ops.ietf.org
Subject: Re: Forgery Resistance phase #2
From: Olafur Gudmundsson <ogud@ogud.com>
Date: Tue, 29 Jul 2008 06:06:10 -0400
In-reply-to: <p0624080ac4b3bd80942b@[130.129.22.27]>
References: <200807281555.m6SFsxAO021711@stora.ogud.com> <p0624080ac4b3bd80942b@[130.129.22.27]>

At 14:18 28/07/2008, Paul Hoffman wrote:

At 11:53 AM -0400 7/28/08, Ólafur Gu©£mundsson /DNSEXT
 chair wrote:
Steps that resolvers can take to protect them self:
        Forgery Detection
        and react to forgery attempts.
There is a glaring lack of footnote on thatsecond one. I have heard multiple suggestions inthe hallways this week. A bit more detail here would be appreciated.


yes it does, but this is a new area for DNS, suggestions are welcome.
The danger here is a that some possible fall backs might be worse
than doing nothing.

        Olafur



        Olafur


--
to unsubscribe send a message to namedroppers-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/namedroppers/>

References:
- Forgery Resistance phase #2
  - From: Ólafur Guðmundsson /DNSEXT chair <ogud@ogud.com>
- Re: Forgery Resistance phase #2
  - From: Paul Hoffman <paul.hoffman@vpnc.org>

Prev by Date: Re: please adopt http://tools.ietf.org/html/draft-vixie-dnsext-dns0x20
Next by Date: I-D Action:draft-ietf-dnsext-dnssec-rsasha256-05.txt
Previous by thread: Re: Forgery Resistance phase #2
Next by thread: RE: Forgery Resistance phase #2
Index(es):
- Date
- Thread