[dns-operations] auth servers in different TLDs

Robert Edmonds edmonds at mycre.ws
Wed Apr 18 20:24:53 UTC 2018

Stephane Bortzmeyer wrote:
> On Tue, Apr 17, 2018 at 09:46:01AM -0400,
>  Bob Harold <rharolde at umich.edu> wrote 
>  a message of 153 lines which said:
> > On the other hand, anyone who compromises any of the TLD's that you
> > use for NS records would be able to compromise your domain, so it
> > could be a disadvantage to use several TLD's.
> Luckily, there is a technical solution for this problem, DNSSEC.

Unless the attacker also publishes compromised DS records?

Robert Edmonds

More information about the dns-operations mailing list