[dns-operations] Introducing DNSCrypt
Stephane Bortzmeyer
bortzmeyer at nic.fr
Tue Dec 6 17:10:49 UTC 2011
On Tue, Dec 06, 2011 at 07:17:21AM -0800,
David Ulevitch <david at opendns.com> wrote
a message of 79 lines which said:
> DNSCrypt (http://www.opendns.com/technology/dnscrypt).
Reading...
> The goal of DNSCrypt is to provide encryption of all DNS traffic
> between stubs and resolvers, a growing and often overlooked problem
> that has bugged us for some time. TSIG was one consideration,
And SIG(0) aka RFC 2931? I certainly understand why TSIG was not
possible (shared secret with hundreds of thousands of users) but
SIG(0)?
More information about the dns-operations
mailing list