nanog mailing list archives
Re: Multiple DNS implementations vulnerable to cache poisoning
From: Joao Damas <Joao_Damas () isc org>
Date: Thu, 10 Jul 2008 12:17:08 +0200
I would love to get input on that be it in Dublin or elsewhere, both sides: the authoritative server and the recursive validator. We have ideas and want to do this but I will not claim to be the owner of THE TRUTH, so input is much desired.
JoaoPS: I would also want a copy of, or a secure method to access, the public part of the keys you use to sign those ccTLDs so I can place them in ISC's DLV registry
On 10 Jul 2008, at 01:17, Randy Bush wrote:
David Conrad wrote:Love to. We can also put your trust anchors in the prototype ITAR (seeThere are 4 ccTLDs (se, bg, pr, br) that are signed.wanna crawl in a corner in dublin and i can sign a few?the first part of https://par.icann.org/files/paris/IANAReportKim_24Jun08.pdf).aside from just getting some cctlds signed, i will be interested in thetools, usability, work flow, ... i.e. what is it like for a poor innocent cctld which wants to sign their zone? randy
Current thread:
- Re: Multiple DNS implementations vulnerable to cache poisoning, (continued)
- Re: Multiple DNS implementations vulnerable to cache poisoning Martin Hannigan (Jul 09)
- Re: Multiple DNS implementations vulnerable to cache poisoning Christopher Morrow (Jul 09)
- Re: Multiple DNS implementations vulnerable to cache poisoning David Conrad (Jul 10)
- RE: Multiple DNS implementations vulnerable to cache poisoning Martin Hannigan (Jul 10)
- Message not available
- Re: Multiple DNS implementations vulnerable to cache poisoning Christopher Morrow (Jul 10)
- Re: Multiple DNS implementations vulnerable to cache poisoning David Conrad (Jul 10)
- Re: Multiple DNS implementations vulnerable to cache poisoning Jay R. Ashworth (Jul 10)
- Re: Multiple DNS implementations vulnerable to cache poisoning Michael Sinatra (Jul 10)
- RE: Multiple DNS implementations vulnerable to cache poisoning Andrews Carl 455 (Jul 10)
- Re: Multiple DNS implementations vulnerable to cache poisoning Russ Mundy (Jul 10)
- Re: Multiple DNS implementations vulnerable to cache poisoning Joao Damas (Jul 10)
- Message not available
- Re: Multiple DNS implementations vulnerable to cache poisoning David Conrad (Jul 10)
- Re: Multiple DNS implementations vulnerable to cache poisoning Jay R. Ashworth (Jul 09)
- Re: Multiple DNS implementations vulnerable to cache poisoning Patrick W. Gilmore (Jul 09)
- RE: Multiple DNS implementations vulnerable to cache poisoning Eric Davis (Jul 09)
- Re: Multiple DNS implementations vulnerable to cache poisoning Phil Regnauld (Jul 10)