nanog mailing list archives
Re: DNS and nxdomain hijacking
From: Ray Soucy <rps () maine edu>
Date: Tue, 5 Nov 2013 22:39:15 -0500
http://en.wikipedia.org/wiki/Response_policy_zone RPZ functionality has been widely adopted in the past few years. Also known as "DNS Firewall". On Tue, Nov 5, 2013 at 10:30 PM, Andrew Sullivan <asullivan () dyn com> wrote:
On Tue, Nov 05, 2013 at 07:57:59PM -0500, Phil Bedard wrote:I think every major residential ISP in the US has been doing this for 5+ years now.Comcast doesn't, because it breaks DNSSEC. A -- Andrew Sullivan Dyn, Inc. asullivan () dyn com v: +1 603 663 0448
-- Ray Patrick Soucy Network Engineer University of Maine System T: 207-561-3526 F: 207-561-3531 MaineREN, Maine's Research and Education Network www.maineren.net
Current thread:
- DNS and nxdomain hijacking Warren Bailey (Nov 05)
- Re: DNS and nxdomain hijacking Jimmy Hess (Nov 05)
- Re: DNS and nxdomain hijacking Phil Bedard (Nov 05)
- Re: DNS and nxdomain hijacking Eric Tykwinski (Nov 05)
- Re: DNS and nxdomain hijacking Andrew Sullivan (Nov 05)
- Re: DNS and nxdomain hijacking Ray Soucy (Nov 05)
- Re: DNS and nxdomain hijacking Mark Andrews (Nov 05)
- Re: DNS and nxdomain hijacking Livingood, Jason (Nov 06)
- Re: DNS and nxdomain hijacking Phil Bedard (Nov 05)
- Re: DNS and nxdomain hijacking Livingood, Jason (Nov 06)
- Re: DNS and nxdomain hijacking Jimmy Hess (Nov 05)