North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: AW: Odd policy question.

  • From: Jeffrey I. Schiller
  • Date: Sat Jan 14 17:34:36 2006
  • Openpgp: id=F414952B

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Randy Bush wrote:
> could you amplify?

If registrars regularly checked for lame delegations (or checked on
demand). Then a way to attack a domain would be to forge DNS responses
to cause the registrar to remove the domain because it is lame. So
DNSSEC would be needed to be sure...

			-Jeff

- --
=============================================================================
Jeffrey I. Schiller
MIT Network Manager
Information Services and Technology
Massachusetts Institute of Technology
77 Massachusetts Avenue  Room W92-190
Cambridge, MA 02139-4307
617.253.0161 - Voice
[email protected]
============================================================================
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFDyXuu8CBzV/QUlSsRAnAGAJ0WhItRG6VHtHj1QM21NFw+BYxxoQCgyjcy
fCQ3B4rYRxosPl40/Z/kSBw=
=OMSE
-----END PGP SIGNATURE-----