[100700] in North American Network Operators' Group
Re: Hey, SiteFinder is back, again...
daemon@ATHENA.MIT.EDU (David Conrad)
Mon Nov 5 14:31:13 2007
In-Reply-To: <200711051623.LAA02336@sigma.nrk.com>
Cc: nanog@merit.edu (nanog list)
From: David Conrad <drc@virtualized.org>
Date: Mon, 5 Nov 2007 11:17:29 -0800
To: wb8foz@nrk.com
Errors-To: owner-nanog@merit.edu
On Nov 5, 2007, at 8:23 AM, David Lesher wrote:
> What affect will Allegedly Secure DNS have on such provider
> hijackings, both of DNS and crammed-in content?
If what Verizon is doing is rewriting NXDOMAIN at their caching
servers, DNSSEC will _not_ help. Caching servers do the validation
and the insertion of the search engine IP addresses in the response
would occur after the validation.
Regards,
-drc
