nanog mailing list archives

Re: fixing insecure email infrastructure (was: Re: [eweek article]

From: Todd Vierling <tv () duh org>
Date: Fri, 14 Jan 2005 10:52:03 -0500 (EST)


On Fri, 14 Jan 2005, Suresh Ramasubramanian wrote:

That's bad sincd DNAME is deprecated and has been removed from BIND.


No, its A6 that is to be depreciated (and too bad because its superior
to AAAA), but last I heard DNAME stays as standard RR.


Cue DJB's "kill A6" page
http://cr.yp.to/djbdns/killa6.html


Well, A6 is not DNAME; the only relation is that A6 needed DNAME in the
reverse lookup direction.

DNAME is quite useful in the forward lookup direction, particularly since
synthesizing CNAMEs for older resolvers is part of the requirement.  It
allows moving of an entire subdomain wholesale from one parent to another
without creating a flurry of CNAMEs.  This helps even more if you have a
wildcard subdomain in there.  8-)

-- 
-- Todd Vierling <tv () duh org> <tv () pobox com>

Current thread:

Re: marking dynamic ranges, was fixing insecure email infrastructure, (continued)
- - - Re: marking dynamic ranges, was fixing insecure email infrastructure Valdis . Kletnieks (Jan 25)
    - Re: marking dynamic ranges, was fixing insecure email infrastructure Markus Stumpf (Jan 25)
    - Re: marking dynamic ranges, was fixing insecure email infrastructure J.D. Falk (Jan 25)
    - Re: marking dynamic ranges, was fixing insecure email infrastructure Valdis . Kletnieks (Jan 25)
    - Re: marking dynamic ranges, was fixing insecure email infrastructure Markus Stumpf (Jan 25)
    - Re: marking dynamic ranges, was fixing insecure email infrastructure Suresh Ramasubramanian (Jan 25)
    - Message not available
    - Re: fixing insecure email infrastructure (was: Re: [eweek article] Mark Andrews (Jan 13)
    - Re: fixing insecure email infrastructure (was: Re: [eweek article] Owen DeLong (Jan 13)
    - Re: fixing insecure email infrastructure (was: Re: [eweek article] william(at)elan.net (Jan 13)
    - Re: fixing insecure email infrastructure (was: Re: [eweek article] Suresh Ramasubramanian (Jan 13)
    - Re: fixing insecure email infrastructure (was: Re: [eweek article] Todd Vierling (Jan 14)
    - Re: fixing insecure email infrastructure (was: Re: [eweek article] Mark Andrews (Jan 14)
    - Re: fixing insecure email infrastructure (was: Re: [eweek article] Paul Vixie (Jan 14)
    - Re: fixing insecure email infrastructure (was: Re: [eweek article] Markus Stumpf (Jan 24)
    - Re: fixing insecure email infrastructure (was: Re: [eweek article] Mark Andrews (Jan 24)
    - Re: fixing insecure email infrastructure (was: Re: [eweek article] Markus Stumpf (Jan 25)
    - Re: fixing insecure email infrastructure (was: Re: [eweek article] Mark Andrews (Jan 25)
    - Re: fixing insecure email infrastructure (was: Re: [eweek article] Markus Stumpf (Jan 25)
    - Re: fixing insecure email infrastructure (was: Re: [eweek article] Mark Andrews (Jan 25)
    - Re: fixing insecure email infrastructure (was: Re: [eweek article] Markus Stumpf (Jan 25)
    - RE: fixing insecure email infrastructure (was: Re: [eweek article] Window of "anonymity" when domain exists, whois not updated yet) Joseph Johnson (Jan 13)

(Thread continues...)