On Aug 22, 2008, at 9:09 AM, Paul Vixie wrote:
>> I am going to document the countermeasures I envision (in addition to
>> DNSSEC) for Unbound in a draft (as the wg chairs ask).

>
> that would be great.


Dan raised the point on his blog recently that active countermeasures
have the problem that they make a great avenue for denial-of-service
attacks. Seems like something worth keeping in mind.


--
to unsubscribe send a message to namedroppers-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: