nanog mailing list archives

Previous By Date Next
Previous By Thread Next

Re: DNSSEC and ISPs faking DNS responses

From: "Roland Dobbins" <rdobbins () arbor net>
Date: Sat, 14 Nov 2015 19:29:10 +0700
On 14 Nov 2015, at 16:27, Owen DeLong wrote:


Today.
Yes, today, and tomorrow, and next week, and next month, and next year, etc.
Why on earth do you assume that this will not continue to expand and/or accelerate its rate of expansion as word spreads that it is possible? 

Because it isn't a simple default.
If it ever becomes a simple default, we'll start to see greater adoption. And probably not in the form of 'tunneling-everything' VPNs, but 'application VPNs' which automagically utilize SSL/TLS 

-----------------------------------
Roland Dobbins <rdobbins () arbor net>
Previous By Date Next
Previous By Thread Next

Current thread: