[hcs-d] "Massive" DNS Vulnerability - Is it really that bad?

Ivan Krstić krstic at solarsail.hcs.harvard.edu
Wed Jul 9 00:03:36 EDT 2008


On Jul 8, 2008, at 9:06 PM, Joshua Kroll wrote:
> We need DNSSec, for what it's worth


We need DNSSEC about as much as we need herpes.

<http://www.matasano.com/log/756/a-case-against-dnssec-count-1-solves-a-non-problem/ 
 >
<http://www.matasano.com/log/772/a-case-against-dnssec-count-2-too-complicated-to-deploy/ 
 >

A more secure deployable DNS system might be worth pursuing, but  
DNSSEC isn't it.

--
Ivan Krstić <krstic at solarsail.hcs.harvard.edu> | http://radian.org



More information about the hcs-discuss mailing list