RE: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13

ietf

RE: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13

2015-07-13 14:12:50

On  Monday, July 13, 2015 11:47 AM, Viktor Dukhovni wrote

On Mon, Jul 13, 2015 at 02:36:18PM -0400, Sam Hartman wrote:

I have never been convinced that DNSsec validation of A or AAAA
records has value.  I understand I am a heretic in the security
community for saying that, but there it is.


I'm inclined to agree that the value is marginal.

...

Forging IP address records in DNS is rather tamper-evident.  It is far more
attractive to attack BGP, and MiTM or just monitor the traffic transparently.


Consider the use case. The hot spot controls the default router, and often 
implements a NAT. They can decide to terminate the A or AAAA address wherever 
they please. The value of ensuring proper name to address resolution is indeed 
marginal.

-- Christian Huitema

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, (continued) Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Ted Lemon RE: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Christian Huitema Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Ted Lemon Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Sam Hartman Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Ted Lemon Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Sam Hartman Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Ted Lemon Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Sam Hartman Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Ted Lemon Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Viktor Dukhovni RE: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Christian Huitema <= Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Ted Lemon RE: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Christian Huitema Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Ted Lemon Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, David Farmer Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Ted Lemon Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Sam Hartman Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, David Farmer Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Ted Lemon Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Sam Hartman Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Warren Kumari

Previous by Date:	Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Viktor Dukhovni
Next by Date:	Re: Gen-art 2nd LC review of draft-ietf-payload-vp8-16, Ben Campbell
Previous by Thread:	Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Viktor Dukhovni
Next by Thread:	Re: Gen-ART and OPS-Dir review of draft-wkumari-dhc-capport-13, Ted Lemon
Indexes:	[Date] [Thread] [Top] [All Lists]