nanog mailing list archives

Re: DNS hardening, was Re: Dan Kaminsky

From: "John R. Levine" <johnl () iecc com>
Date: Wed, 5 Aug 2009 15:07:30 -0400 (EDT)

5 is 'edns ping', but it was effectively blocked because people
thought DNSSEC would be easier to do, or demanded that EDNS PING
(http://edns-ping.org) would offer everything that DNSSEC offered.


        I'm surprised you failed to mention http://dnscurve.org/crypto.html,
        which is always brought up, but never seems to solve the problems
        mentioned.

dnscurve looks like a swell idea, but I wouldn't put it in the category ofa hack as straightforward as the ones I listed. Also, at this point thereappears to be neither code nor an implementable spec available since Danis still fiddling with it.


Regards,
John Levine, johnl () iecc com, Primary Perpetrator of "The Internet for Dummies",
Information Superhighwayman wanna-be, http://www.johnlevine.com, ex-Mayor
"More Wiener schnitzel, please", said Tom, revealingly.

Current thread:

RE: Dan Kaminsky, (continued)
- - - RE: Dan Kaminsky Buhrmaster, Gary (Aug 07)
    - Re: Dan Kaminsky Jorge Amodio (Aug 07)
    - QR-Codes... was: Re: Dan Kaminsky Dragos Ruiu (Aug 07)
    - Re: Dan Kaminsky Jorge Amodio (Aug 07)
    - Re: Dan Kaminsky Nick Hilliard (Aug 05)
  - Re: Dan Kaminsky Paul Vixie (Aug 04)
    - Re: Dan Kaminsky bert hubert (Aug 04)
  - DNS hardening, was Re: Dan Kaminsky John Levine (Aug 05)
    - Re: DNS hardening, was Re: Dan Kaminsky bert hubert (Aug 05)
    - Re: DNS hardening, was Re: Dan Kaminsky Phil Regnauld (Aug 05)
    - Re: DNS hardening, was Re: Dan Kaminsky John R. Levine (Aug 05)
    - Re: DNS hardening, was Re: Dan Kaminsky Steven M. Bellovin (Aug 05)
    - Re: dnscurve and DNS hardening, was Re: Dan Kaminsky John R. Levine (Aug 05)
    - Re: dnscurve and DNS hardening, was Re: Dan Kaminsky Mark Andrews (Aug 05)
    - Re: dnscurve and DNS hardening, was Re: Dan Kaminsky Naveen Nathan (Aug 05)
    - RE: dnscurve and DNS hardening, was Re: Dan Kaminsky Skywing (Aug 05)
    - Re: dnscurve and DNS hardening, was Re: Dan Kaminsky Ben Scott (Aug 05)
    - Re: dnscurve and DNS hardening, was Re: Dan Kaminsky Naveen Nathan (Aug 05)
    - Re: dnscurve and DNS hardening, was Re: Dan Kaminsky Florian Weimer (Aug 06)
    - Re: dnscurve and DNS hardening, was Re: Dan Kaminsky Alexander Harrowell (Aug 06)
    - Re: dnscurve and DNS hardening, was Re: Dan Kaminsky Ben Scott (Aug 07)

(Thread continues...)