Re: "The ISC is the Microsoft of the DNS, BIND its Windows, ..."

[Dan Kaminsky <dan () doxpara com>]

Jeffrey,

   It ain't the US that's leading the way in DNS based blocklists, now is
it?

   Ultimately DNS is not the right layer to do general purpose filtering.
There's no question that national blocklists slot very nicely into this
proposal by Vixie, but really, for the threat you discuss we already live in
that future.

On Fri, Aug 6, 2010 at 2:12 PM, Jeffrey Walton <noloader () gmail com> wrote:

> Hi Paul,
>
> What happens when the US government comes-a-knocking, desiring to
> manipulate data while claiming some sort of purview under the gestapo
> legislation known as the PATRIOT Act (or <insert legislation name
> here>)? The hooks provided by the ISC and used by the domain operator
> will facilitate the DNS subversion nicely. Put another way, the ISC
> proposal has just made it easier for US government abuses, and abuses
> which can effect not only US citizens, but citizens of other
> countries.
>
> Perhaps the ISC should also divest DNS interests from the US so that
> more dns operators, immune from US control, are available to the
> community.
>
> Jeff
>
> On Fri, Aug 6, 2010 at 1:07 AM, Paul Vixie <vixie () isc org> wrote:
> > http://domainincite.com/vixie-declares-war-on-domain-name-crooks/
> > _______________________________________________
> > Fun and Misc security discussion for OT posts.
> > https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> > Note: funsec is a public and open mailing list.
> _______________________________________________
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.