nanog mailing list archives
Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking
From: Ross Tajvar <ross () tajvar io>
Date: Tue, 26 Feb 2019 23:25:10 -0500
Okay that was *clearly* a troll. On Tue, Feb 26, 2019 at 10:58 PM Keith Medcalf <kmedcalf () dessus com> wrote:
I did write my own TOTP client. However, why do you assume that I am talking about a TOTP client and not the referred webpage which requires the unfettered execution of third-party (likely malicious) javascript in order to view? Not to mention requiring the use of (also quite possibly malicious) downloaded fonts? --- The fact that there's a Highway to Hell but only a Stairway to Heaven says a lot about anticipated traffic volume.-----Original Message----- From: NANOG [mailto:nanog-bounces+kmedcalf=dessus.com () nanog org] On Behalf Of Seth Mattinen Sent: Tuesday, 26 February, 2019 09:36 To: nanog () nanog org Subject: Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking On 2/25/19 9:59 PM, Keith Medcalf wrote:Are you offering an indemnity in case that code is malicious? Whatare the terms and the amount of the indemnity? Anyone who is that paranoid should read the RFC and write their own TOTP client that lets them indemnify themselves from their own code.
Current thread:
- Re: A Deep Dive on the Recent Widespread DNS Hijacking, (continued)
- Re: A Deep Dive on the Recent Widespread DNS Hijacking Hunter Fuller (Feb 25)
- Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking John Levine (Feb 25)
- Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking Rubens Kuhl (Feb 25)
- RE: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking Keith Medcalf (Feb 25)
- Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking Job Snijders (Feb 25)
- Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking Seth Mattinen (Feb 26)
- Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking valdis . kletnieks (Feb 26)
- Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking Matthew Petach (Feb 26)
- RE: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking Keith Medcalf (Feb 26)
- Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking Hunter Fuller (Feb 26)
- Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking Ross Tajvar (Feb 26)
- Re: A Deep Dive on the Recent Widespread DNS Hijacking Saku Ytti (Feb 26)
- Re: A Deep Dive on the Recent Widespread DNS Hijacking Tony Finch (Feb 26)
- Re: A Deep Dive on the Recent Widespread DNS Hijacking Paul Ebersman (Feb 25)
- Re: A Deep Dive on the Recent Widespread DNS Hijacking Ross Tajvar (Feb 25)
- Re: A Deep Dive on the Recent Widespread DNS Hijacking Bill Woodcock (Feb 24)
- Re: A Deep Dive on the Recent Widespread DNS Hijacking Hank Nussbacher (Feb 24)
- Re: A Deep Dive on the Recent Widespread DNS Hijacking Ask Bjørn Hansen (Feb 25)
- Re: A Deep Dive on the Recent Widespread DNS Hijacking Hank Nussbacher (Feb 25)
- Re: A Deep Dive on the Recent Widespread DNS Hijacking Bill Woodcock (Feb 26)
- Re: A Deep Dive on the Recent Widespread DNS Hijacking Sander Steffann (Feb 26)