nanog mailing list archives

Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking

From: Job Snijders <job () instituut net>
Date: Tue, 26 Feb 2019 06:07:10 +0000

Keith,

On Tue, Feb 26, 2019 at 6:00 AM Keith Medcalf <kmedcalf () dessus com> wrote:

https://twofactorauth.org/#domains gives a good view of the domain
management landscape regarding 2FA.


Seems to require the unfettered execution of third-party code ...

Are you offering an indemnity in case that code is malicious?  What are the terms and the amount of the indemnity?


What are you talking about?! Are you ... trolling?

If you don't trust the various (excellent) closed & open-source
implementations of TOTP - you can write one yourself. The algorithm &
specification are entirely open and free to use:
https://tools.ietf.org/html/rfc6238

Using TOTP as 2FA is an excellent and recommended practice, and I am
happy to see so many domain registrars support it.

Regards,

Job

Current thread:

Re: A Deep Dive on the Recent Widespread DNS Hijacking, (continued)
- - - Re: A Deep Dive on the Recent Widespread DNS Hijacking Eric Kuhnke (Feb 25)
    - Re: A Deep Dive on the Recent Widespread DNS Hijacking Paul Ebersman (Feb 25)
    - Re: A Deep Dive on the Recent Widespread DNS Hijacking valdis . kletnieks (Feb 25)
    - Re: A Deep Dive on the Recent Widespread DNS Hijacking Paul Ebersman (Feb 25)
    - Re: A Deep Dive on the Recent Widespread DNS Hijacking valdis . kletnieks (Feb 25)
    - Re: A Deep Dive on the Recent Widespread DNS Hijacking Eric Kuhnke (Feb 25)
    - Re: A Deep Dive on the Recent Widespread DNS Hijacking Hunter Fuller (Feb 25)
    - Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking John Levine (Feb 25)
    - Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking Rubens Kuhl (Feb 25)
    - RE: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking Keith Medcalf (Feb 25)
    - Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking Job Snijders (Feb 25)
    - Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking Seth Mattinen (Feb 26)
    - Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking valdis . kletnieks (Feb 26)
    - Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking Matthew Petach (Feb 26)
    - RE: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking Keith Medcalf (Feb 26)
    - Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking Hunter Fuller (Feb 26)
    - Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking Ross Tajvar (Feb 26)
    - Re: A Deep Dive on the Recent Widespread DNS Hijacking Saku Ytti (Feb 26)
    - Re: A Deep Dive on the Recent Widespread DNS Hijacking Tony Finch (Feb 26)
    - Re: A Deep Dive on the Recent Widespread DNS Hijacking Paul Ebersman (Feb 25)
    - Re: A Deep Dive on the Recent Widespread DNS Hijacking Ross Tajvar (Feb 25)

(Thread continues...)