> Why do you call such a well known vulnerability of DNS, which was
> documented in section 2.2 of RFC3822 in 2004 several years after it
> had been publicly known, kaminsky-spoofing?

I think you mean section 2.3 of RFC 3822. I agree that the basic
attack is presented in that section.

There is no section 2.3 in RFC 3822. That RFC is about "Finding
Fibre Channel over TCP/IP (FCIP) Entities Using Service Location
Protocol version 2 (SLPv2)" so I'm a bit lost where you all are
talking about.


to unsubscribe send a message to namedroppers-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.