[dns-operations] Concerns regarding the ICANN/IANA DNS vulnerability checker

Barbara Roseman barbara.roseman at icann.org
Mon Aug 11 15:29:44 UTC 2008


Just to be clear, ICANN did reach out to all the ccTLDs and gTLDs that exhibited vulnerabilities in the weeks prior to Kaminisky's presentation. A significant number of them were able to patch before his talk. For many of the remaining TLDs with authoritative name servers that are still vulnerable, several secondaries are not directly under the control of the TLD managers and we're working with them to find appropriate and timely solutions.

Barbara Roseman
General Manager, IANA
(office) +1310-301-5835
(mobile) +1310-808-4999
barbara.roseman at icann.org

On 8/11/08 2:11 AM, "Florian Weimer" <fweimer at bfk.de> wrote:

Maybe.  But if it's a real problem, why doesn't ICANN make sure that
at least the gTLDs under its influence are protected before going

On the other hand, if it's not that important, it's rather
questionable to associate it with the other DNS issues we're dealing
with right now.

Florian Weimer                <fweimer at bfk.de>
BFK edv-consulting GmbH       http://www.bfk.de/
Kriegsstraße 100              tel: +49-721-96201-1
D-76133 Karlsruhe             fax: +49-721-96201-99
dns-operations mailing list
dns-operations at lists.oarci.net

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.dns-oarc.net/pipermail/dns-operations/attachments/20080811/1436c2f7/attachment.html>

More information about the dns-operations mailing list