nanog mailing list archives
Re: DNS and nxdomain hijacking
From: "Livingood, Jason" <Jason_Livingood () cable comcast com>
Date: Wed, 6 Nov 2013 13:57:33 +0000
On 11/5/13, 11:01 PM, "Mark Andrews" <marka () isc org> wrote:
In message <20131106033003.GB6728 () dyn com>, Andrew Sullivan writes:On Tue, Nov 05, 2013 at 07:57:59PM -0500, Phil Bedard wrote:I think every major residential ISP in the US has been doing this for5+years now.Comcast doesn't, because it breaks DNSSEC.Only if you are validating.
Exactly. And this was one of the central arguments that helped defeat the DNS redirection portions of SOPA/PIPA/ProtectIP/COICA. Jason
Current thread:
- DNS and nxdomain hijacking Warren Bailey (Nov 05)
- Re: DNS and nxdomain hijacking Jimmy Hess (Nov 05)
- Re: DNS and nxdomain hijacking Phil Bedard (Nov 05)
- Re: DNS and nxdomain hijacking Eric Tykwinski (Nov 05)
- Re: DNS and nxdomain hijacking Andrew Sullivan (Nov 05)
- Re: DNS and nxdomain hijacking Ray Soucy (Nov 05)
- Re: DNS and nxdomain hijacking Mark Andrews (Nov 05)
- Re: DNS and nxdomain hijacking Livingood, Jason (Nov 06)
- Re: DNS and nxdomain hijacking Phil Bedard (Nov 05)
- Re: DNS and nxdomain hijacking Livingood, Jason (Nov 06)
- Re: DNS and nxdomain hijacking Jimmy Hess (Nov 05)