On Feb 18, 2010, at 11:40 AM, Masataka Ohta wrote:
OK. You are saying that any network with intermediate intelligence
to modify DNS responses is not a part of the Internet.
That is, we agree that ISPs in your first statement are not really ISPs.
Attempting to redefine the world to meet your odd definitions doesn't seem to
be a particularly useful exercise.
there have been MITM attacks against the telephony system.
There will be MITM attacks (by a man who operate a CA in the middle
of a CA chain) against DNSSEC. So?
I'm not sure why you are pretending that useful security is binary.
Ietf mailing list