|
North American Network Operators Group Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical Re: how to protect name servers against cache corruption
On Tue, 29 Jul 1997, Ben Black wrote:
> [...] but there is a gaping chasm between the current
> system and DNSSEC that could be closed significantly with proper design.
Well, in the words of internet, fidonet, and other developers worldwide....
Send Code <tm>
If you have "proper design" that significantly closes the holes, I'm sure
we'd all, Mr. Vixie included, appreciate your patch files which
illustrate proper design.
> simply stating that until DNSSEC arrives these attacks are going to be
> allowed is a copout.
Simply stating that there's a better way without Sending Code is a copout.
|