nanog mailing list archives

Re: On-going Internet Emergency and Domain Names

From: Gadi Evron <ge () linuxbox org>
Date: Sat, 31 Mar 2007 23:13:26 -0500 (CDT)


On Sun, 1 Apr 2007, Adrian Chadd wrote:


Stop trying to fix things in the core - it won't work, honest - and start
trying to fix things closer to the edge where the actual problem is.


Thing is, the problem IS in the core. DNS is no longer just being abused,
it is pretty much an abuse infrastructure. That needs to be fixed if
security operations on the Internet at their current effectiveness
(which is low as it is) are to be maintained past Q4 2007-Q2 2008.

I view this kind of thing as an operational issue insomuch as it might
affect my network - but malware writers are botnet operators are smarter
than they once were and aren't nearly as "spray your mark everywhere as
quickly as possible" as exploits used to be.


As to malware:
Protect against malware on your network, this isn't what this is
about. It's about your network's security being reliant on someone half
way across the world taking care of it.

        Gadi.


Adrian

Current thread:

RE: On-going Internet Emergency and Domain Names, (continued)
- - - RE: On-going Internet Emergency and Domain Names Frank Bulk (Mar 31)
    - RE: On-going Internet Emergency and Domain Names Douglas Otis (Mar 31)
    - Re: On-going Internet Emergency and Domain Names Stephen Satchell (Mar 31)
    - RE: On-going Internet Emergency and Domain Names Matt Ghali (Mar 31)
    - Re: On-going Internet Emergency and Domain Names Mattias Ahnberg (Mar 31)
    - Re: On-going Internet Emergency and Domain Names Petri Helenius (Mar 31)
    - Re: On-going Internet Emergency and Domain Names Gadi Evron (Mar 31)
    - Re: On-going Internet Emergency and Domain Names Stephen Satchell (Mar 31)
    - Re: On-going Internet Emergency and Domain Names Gadi Evron (Mar 31)
    - Re: On-going Internet Emergency and Domain Names Adrian Chadd (Mar 31)
    - Re: On-going Internet Emergency and Domain Names Gadi Evron (Mar 31)
    - Re: On-going Internet Emergency and Domain Names Adrian Chadd (Mar 31)
    - Re: On-going Internet Emergency and Domain Names Petri Helenius (Mar 31)
    - Re: On-going Internet Emergency and Domain Names Gadi Evron (Mar 31)
    - RE: On-going Internet Emergency and Domain Names michael.dillon (Mar 31)
    - Re: On-going Internet Emergency and Domain Names Hank Nussbacher (Mar 31)
    - Re: On-going Internet Emergency and Domain Names Paul Vixie (Mar 31)
    - Re: On-going Internet Emergency and Domain Names Roland Dobbins (Mar 31)
    - Re: On-going Internet Emergency and Domain Names Gadi Evron (Mar 31)
    - Re: On-going Internet Emergency and Domain Names Florian Weimer (Mar 31)
    - redirect (Re: On-going Internet Emergency and Domain Names ) Paul Vixie (Mar 31)

(Thread continues...)