[dns-operations] "RoadRunner Intercepting Domain Typos" (slashdot)
Mark_Andrews at isc.org
Thu Feb 28 02:16:14 UTC 2008
> On Feb 27, 2008, at 10:02 PM, Tony Finch wrote:
> > On Tue, 26 Feb 2008, Rich Goodson wrote:
> >> I have a feeling that this is going to become more and more popular
> >> as
> >> time goes on.
> > Yes, and the financial disincentive is going to make DNSSEC much
> > harder to
> > deploy.
> Not really. This type of redirection is generally done at the ISP's
> caching server. As such, the only way this would impede DNSSEC is if
> the ISP blocks their customers from running (validating) caching
> servers themselves.
One would hope that any cache doing this would look at
CD and disable the re-write as it is a clear DoS on the
client. The client has stated that it wishes to verify
the answers received and doesn't want intermediate caches
interpreting the results for it.
> dns-operations mailing list
> dns-operations at lists.oarci.net
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark_Andrews at isc.org
More information about the dns-operations