[dns-wg] What about the last mile, was: getting DNSSEC deployed
Lutz Donnerhacke lutz at iks-jena.de
Mon Feb 19 10:27:11 CET 2007
* Max Tulyev wrote: > Lutz Donnerhacke wrote: >> I do not see the need for crypto on the last mile. > > And what to do with spoofed answers? Spoofing the ISPs resolver on the last mile is not possible due to ingress filtering.
[ dns-wg Archives ]