[dns-wg] What about the last mile, was: getting DNSSEC deployed
- Previous message (by thread): [dns-wg] What about the last mile, was: getting DNSSEC deployed
- Next message (by thread): [dns-wg] What about the last mile, was: getting DNSSEC deployed
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Max Tulyev
president at ukraine.su
Mon Feb 19 11:42:23 CET 2007
Lutz Donnerhacke wrote: > * Max Tulyev wrote: >> Lutz Donnerhacke wrote: >>> I do not see the need for crypto on the last mile. >> And what to do with spoofed answers? > > Spoofing the ISPs resolver on the last mile is not possible due to ingress > filtering. > ...if it is switched on, if it is at all routers, if the spoofer not in the same ethernet (or other L2 broadcast) segment, if..., if..., if... :) -- WBR, Max Tulyev (MT6561-RIPE, 2:463/253 at FIDO)
- Previous message (by thread): [dns-wg] What about the last mile, was: getting DNSSEC deployed
- Next message (by thread): [dns-wg] What about the last mile, was: getting DNSSEC deployed
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
[ dns-wg Archives ]