Re: DNSSEC - Signature Only vs the MX/A issue.
On Sun, Dec 10, 2006 at 12:45:27PM -0800, Christian Huitema wrote:
> In these conditions, what is the point of securing the DNS look-up? The
> end-to-end verification of the certificate will validate it.[/color]
Exactly. This is also the reason why we don't have an "ARPSEC" protocol.
Or perhaps we do, but is about as exciting as DNSSEC. I wrote about this on
[url]http://www.PowerDNS.com[/url] Open source, database driven DNS Software
[url]http://netherlabs.nl[/url] Open and Closed source services
to unsubscribe send a message to [email]firstname.lastname@example.org[/email] with
the word 'unsubscribe' in a single line as the message text body.