[dns-operations] auth servers in different TLDs
Robert Edmonds
edmonds at mycre.ws
Wed Apr 18 20:24:53 UTC 2018
Stephane Bortzmeyer wrote:
> On Tue, Apr 17, 2018 at 09:46:01AM -0400,
> Bob Harold <rharolde at umich.edu> wrote
> a message of 153 lines which said:
>
> > On the other hand, anyone who compromises any of the TLD's that you
> > use for NS records would be able to compromise your domain, so it
> > could be a disadvantage to use several TLD's.
>
> Luckily, there is a technical solution for this problem, DNSSEC.
Unless the attacker also publishes compromised DS records?
--
Robert Edmonds
More information about the dns-operations
mailing list