[97958] in North American Network Operators' Group
Re: DNS Hijacking by Cox
daemon@ATHENA.MIT.EDU (Patrick W. Gilmore)
Sun Jul 22 21:42:17 2007
In-Reply-To: <20070723012945.E917C766082@berkshire.machshav.com>
Cc: "Patrick W. Gilmore" <patrick@ianai.net>
From: "Patrick W. Gilmore" <patrick@ianai.net>
Date: Sun, 22 Jul 2007 21:40:05 -0400
To: nanog@merit.edu
Errors-To: owner-nanog@merit.edu
On Jul 22, 2007, at 9:29 PM, Steven M. Bellovin wrote:
> On Sun, 22 Jul 2007 14:56:13 -0700
> "Andrew Matthews" <exstatica@gmail.com> wrote:
>
>> It looks like cox is hijacking dns for irc servers.
>>
> And people wonder why I support DNSsec....
Steve,
One of us is confused. It might be me, but right now I think it's you.
To be clear, here is the situation as I understand it: Cox has
configured their recursive name servers such that when an end user
queries the recursive server for a specific host name (names?), the
recursive server responds with an IP address the host's owner did not
configure.
How exactly is DNSSEC going to stop them from doing this?
--
TTFN,
patrick
