[dns-operations] Spoofing DNS with fragments

Volker Janzen voja at voja.de
Tue Sep 11 10:10:25 UTC 2018

Previous message (by thread): [dns-operations] Spoofing DNS with fragments
Next message (by thread): [dns-operations] Spoofing DNS with fragments
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

> Note that as long as one CA does not validate, DNSSEC is not a
> sufficient defense, you need DANE as well (otherwise the attacker will
> go to another CA).

or CAA records.


Kind regards,
    Volker

Previous message (by thread): [dns-operations] Spoofing DNS with fragments
Next message (by thread): [dns-operations] Spoofing DNS with fragments
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the dns-operations mailing list