[62168] in North American Network Operators' Group
Re: Verisign brain damage and DNSSec.....Was:Re: What *are* they smoking?
daemon@ATHENA.MIT.EDU (Valdis.Kletnieks@vt.edu)
Tue Sep 16 14:22:41 2003
To: bmanning@karoshi.com
Cc: bownes@web9.com (Keptin Komrade Dr. BobWrench III esq.),
gmaxwell@martin.fl.us (Greg Maxwell), haesu@towardex.com (Haesu),
marius@marius.org (Marius Strom), nanog@merit.edu
In-Reply-To: Your message of "Tue, 16 Sep 2003 11:08:11 PDT."
<200309161808.h8GI8B023217@karoshi.com>
From: Valdis.Kletnieks@vt.edu
Date: Tue, 16 Sep 2003 14:17:45 -0400
Errors-To: owner-nanog-outgoing@merit.edu
--==_Exmh_-797262416P
Content-Type: text/plain; charset=us-ascii
On Tue, 16 Sep 2003 11:08:11 PDT, bmanning@karoshi.com said:
> > On Tue, 16 Sep 2003 09:59:40 PDT, bmanning@karoshi.com said:
> thats one aspect yes. the valdiation chain should tell
> you who signed the delegations. It won't lie.
> you will know that V'sign put that data there.
How frikking many hacks will we need to BIND9 to work around this braindamage?
One to stuff back in the NXDomain if the A record points there, another to
do something with make-believe DNSsec from them..... What's next?
--==_Exmh_-797262416P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQE/Z1PIcC3lWbTT17ARAmKVAJ975Q9HpGNALzZNBpUX1+e+F2fD5gCg3Rfi
np8aeGN7JRpiSsGemV1p9TM=
=eQQ2
-----END PGP SIGNATURE-----
--==_Exmh_-797262416P--
