nanog mailing list archives

Re: Paul Vixie: Re: [dns-operations] DNS issue accidentally leaked?

From: "Jorge Amodio" <jmamodio () gmail com>
Date: Fri, 25 Jul 2008 07:46:20 -0500



So is this patch a "true" fix or just a temporary fix until further
work can be done on the problem?



I guess you need to read some of the related
papers/presentations/advisories/etc
related to a subject that has been under discussion for more 20+ years.

Answering your questions, as said before, the patch is NO FIX to the
problem, it's
just a workaround that (together with an appropiate architecture and
following well
know best practices for DNS deployment) *may* reduce the chances of becoming
a victim of the exploit.

The solution ? DNSSEC, I believe Paul is asking people interested to learn
more
about what needs to be done to get it done to discuss the subject in the
dns-operations list.

My .02

Regards
Jorge

Current thread:

Re: Federal Government Interest in your patch progress, (continued)
- - - Re: Federal Government Interest in your patch progress Jared Mauch (Jul 25)
    - Re: Federal Government Interest in your patch progress Steven M. Bellovin (Jul 25)
    - Re: Federal Government Interest in your patch progress Stephane Bortzmeyer (Jul 29)
    - Re: Federal Government Interest in your patch progress Steven M. Bellovin (Jul 29)
    - Re: Federal Government Interest in your patch progress Paul Vixie (Jul 25)
    - Re: Federal Government Interest in your patch progress chuck goolsbee (Jul 25)
    - Re: Federal Government Interest in your patch progress Sean Donelan (Jul 25)
    - Re: Federal Government Interest in your patch progress brett watson (Jul 25)
    - Re: Federal Government Interest in your patch progress Sean Donelan (Jul 25)
    - Re: Paul Vixie: Re: [dns-operations] DNS issue accidentally leaked? Paul Vixie (Jul 24)
    - Re: Paul Vixie: Re: [dns-operations] DNS issue accidentally leaked? Jorge Amodio (Jul 25)
    - Re: Paul Vixie: Re: [dns-operations] DNS issue accidentally leaked? Randy Bush (Jul 26)
    - Re: Paul Vixie: Re: [dns-operations] DNS issue accidentally leaked? Paul Vixie (Jul 26)
    - Re: Paul Vixie: Re: [dns-operations] DNS issue accidentally leaked? Joe Greco (Jul 26)
    - Re: Paul Vixie: Re: [dns-operations] DNS issue accidentally leaked? bmanning (Jul 26)
    - Re: Paul Vixie: Re: [dns-operations] DNS issue accidentally leaked? Sean Donelan (Jul 26)
    - Re: Paul Vixie: Re: [dns-operations] DNS issue accidentally leaked? bmanning (Jul 26)
    - Re: Paul Vixie: Re: [dns-operations] DNS issue accidentally leaked? Martin Hannigan (Jul 26)
  - Re: Paul Vixie: Re: [dns-operations] DNS issue accidentally leaked? Gadi Evron (Jul 24)
  - Re: Paul Vixie: Re: [dns-operations] DNS issue accidentally leaked? William Herrin (Jul 24)
  - Re: Paul Vixie: Re: [dns-operations] DNS issue accidentally leaked? James Hess (Jul 26)