[dns-operations] Side effects of enabling DNSSEC?
Dobbins, Roland
rdobbins at arbor.net
Fri Aug 3 04:38:53 UTC 2012
On Aug 3, 2012, at 11:34 AM, paul vixie wrote:
> it's not about TXT and it never was about ANY.
Agreed, these are just what we tend to see the attackers using quite a bit - public keys stored as TXT records, for example. The point is that with DNSSEC, there's even less need to attempt to bother with query selectivity.
This isn't an argument against DNSSEC, mind.
-----------------------------------------------------------------------
Roland Dobbins <rdobbins at arbor.net> // <http://www.arbornetworks.com>
Luck is the residue of opportunity and design.
-- John Milton
More information about the dns-operations
mailing list