[as112-ops] DNSSEC?
Nick Hilliard
nick at inex.ie
Wed Jan 13 12:06:11 UTC 2010
On 13/01/2010 00:30, William F. Maton wrote:
> Is there something to be specifically solved by deploying DNSSEC for AS112?
>
> (just asking to entice some discussion here by the AS112 operators)
Not wanting to stir personality trouble, but djb's recent presentation on
dnssec gives rise to some concern:
http://cr.yp.to/talks/2009.08.10/slides.pdf
Ignoring the crypto aspect of dnssec, the packet amplification seems a good
reason to be pretty concerned about implementing dnssec on an anycast system.
Nick
More information about the as112-ops
mailing list