[dns-operations] question for DNS being attacked

Michael Graff mgraff at isc.org
Thu Jun 28 19:10:32 UTC 2012

On Jun 28, 2012, at 1:55 PM, Paul Vixie wrote:
> we are now in the post-apocalyptic road-warrior phase of non-DNSSEC's history. it's difficult for me to imagine anyone choosing to remain an attack amplifier when they could instead sign their zones. but you're entirely right about the tradeoff transparency; vernon and i do not intend to slip this decision into an operator's life without their knowledge and consent.

"BCP 38"  Enough said.


More information about the dns-operations mailing list