nanog mailing list archives
Re: how to protect name servers against cache corruption
From: randy () psg com (Randy Bush)
Date: Tue, 29 Jul 97 20:25 PDT
this statement bothers me. certainly without DNSSEC there can be no *assurances* of security,
While there are often assurances of security, there can never be assurance of security.
there is a gaping chasm between the current system and DNSSEC that could be closed significantly with proper design. simply stating that until DNSSEC arrives these attacks are going to be allowed is a copout.
Send code. randy
Current thread:
- Re: off-topic (Re: how to protect name servers against cache corruption ), (continued)
- Re: off-topic (Re: how to protect name servers against cache corruption ) Larry Vaden (Jul 29)
- Re: off-topic (Re: how to protect name servers against cache corruption ) Ben Black (Jul 30)
- Re: how to protect name servers against cache corruption Lon R. Stockton, Jr. (Jul 29)
- Re: how to protect name servers against cache corruption Ben Black (Jul 29)
- Re: how to protect name servers against cache corruption tqbf (Jul 29)
- Re: how to protect name servers against cache corruption Paul A Vixie (Jul 29)
- Re: how to protect name servers against cache corruption Paul Ferguson (Jul 29)
- Re: how to protect name servers against cache corruption Thomas H. Ptacek (Jul 29)
- Re: how to protect name servers against cache corruption Paul A Vixie (Jul 29)
- Re: how to protect name servers against cache corruption Jay R. Ashworth (Jul 30)
- Re: how to protect name servers against cache corruption Randy Bush (Jul 29)
- Re: how to protect name servers against cache corruption Systems Engineer (Jul 30)
- Message not available
- Re: how to protect name servers against cache corruption Jay R. Ashworth (Jul 30)
- Re: how to protect name servers against cache corruption Michael Dillon (Jul 30)
- Re: how to protect name servers against cache corruption Alexander O. Yuriev (Jul 31)