[dns-operations] Side effects of enabling DNSSEC?

Dobbins, Roland rdobbins at arbor.net
Fri Aug 3 04:38:53 UTC 2012

On Aug 3, 2012, at 11:34 AM, paul vixie wrote:

> it's not about TXT and it never was about ANY.

Agreed, these are just what we tend to see the attackers using quite a bit - public keys stored as TXT records, for example.  The point is that with DNSSEC, there's even less need to attempt to bother with query selectivity.

This isn't an argument against DNSSEC, mind.

Roland Dobbins <rdobbins at arbor.net> // <http://www.arbornetworks.com>

	  Luck is the residue of opportunity and design.

		       -- John Milton

More information about the dns-operations mailing list