nanog mailing list archives

Re: A Deep Dive on the Recent Widespread DNS Hijacking

From: James Renken via NANOG <nanog () nanog org>
Date: Tue, 26 Feb 2019 15:34:12 -0600

On Feb 25, 2019, at 5:20 AM, Bill Woodcock <woody () pch net> wrote:

We know that neither Comodo nor Let's Encrypt were DNSSEC validating before issuing certs.


I’d like to clarify that Let’s Encrypt has always validated DNSSEC, dating to before we issued our first publicly 
trusted certificate in September 2015.

-- 
James Renken (pronouns: he/him)
Internet Security Research Group
Let's Encrypt: A Free, Automated, and Open CA

Current thread:

Re: A Deep Dive on the Recent Widespread DNS Hijacking Nico Cartron (Mar 04)
- <Possible follow-ups>
- Re: A Deep Dive on the Recent Widespread DNS Hijacking James Renken via NANOG (Mar 04)
  - Re: A Deep Dive on the Recent Widespread DNS Hijacking Bill Woodcock (Mar 04)
- Re: A Deep Dive on the Recent Widespread DNS Hijacking James Renken via NANOG (Mar 04)