Full Disclosure: Re: DNS spoofing issue. Thoughts on

Nmap Security Scanner
- Intro
- Ref Guide
- Install Guide
- Download
- Changelog
- Book
- Docs
Security Lists
- Nmap Hackers
- Nmap Dev
- Bugtraq
- Full Disclosure
- Pen Test
- Basics
- More
Security Tools
Site News
Advertising
About/Contact
Sponsors:

Re: DNS spoofing issue. Thoughts on

From: Valdis.Kletnieks () vt edu
Date: Wed, 30 Jul 2008 11:29:53 -0400

On Sun, 27 Jul 2008 14:07:03 EDT, Glenn.Everhart () chase com said:

The need for something more like ssl certs in there remains


It's called DNSSEC, which has been out for a decade and more.

(Also needed for bgp I suspect).


RFC2385 (TCP MD5 protection for BGP) addresses most of the issues, at least
on a peer-to-peer basis, and has been out for a decade.  There's a discussion
of the issues in RFC5123.

Attachment: _bin
Description:

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

Re: DNS spoofing issue. Thoughts on imipak (Jul 26)
- Re: DNS spoofing issue. Thoughts on Paul Schmehl (Jul 26)
- Message not available
  - Re: DNS spoofing issue. Thoughts on n3td3v (Jul 26)
    - Re: [inbox] Re: DNS spoofing issue. Thoughts on Exibar (Jul 27)
- <Possible follow-ups>
- Re: DNS spoofing issue. Thoughts on Paul Szabo (Jul 26)
  - Re: DNS spoofing issue. Thoughts on Valdis . Kletnieks (Jul 27)
- Re: DNS spoofing issue. Thoughts on Glenn.Everhart (Jul 27)
  - Re: DNS spoofing issue. Thoughts on Valdis . Kletnieks (Jul 30)
- Re: DNS spoofing issue. Thoughts on John D. Reason (Jul 27)