[dns-operations] 10% was Re: .mm ....

Dobbins, Roland rdobbins at arbor.net
Fri Jan 18 17:18:46 UTC 2013

On Jan 18, 2013, at 11:05 AM, Edward Lewis wrote:

> Adding security to an existing system will, inherently, make it more brittle. 

I strongly disagree with this statement.  Increasing resilience under duress should be a key goal of any security enhancement; if it doesn't do this, then it hasn't been designed/implemented properly.

>  So trimming failed validations by removing brittleness is a good place to start.

I agree with this statement, and most everything else you say, 100%.  Perhaps 'adding security' wasn't really what you meant in the first sentence?

Roland Dobbins <rdobbins at arbor.net> // <http://www.arbornetworks.com>

	  Luck is the residue of opportunity and design.

		       -- John Milton

More information about the dns-operations mailing list