On Thu, Nov 15, 2012 at 7:33 PM, Olafur Gudmundsson <[email protected]> wrote:
> On 15/11/2012 19:14, Phillip Hallam-Baker wrote: > >> >> >> On Thu, Nov 15, 2012 at 5:57 PM, Danny McPherson <[email protected] >> <mailto:[email protected]>> wrote: >> >> >> On Nov 15, 2012, at 8:02 AM, Phillip Hallam-Baker wrote: >> >> > >> > DANE certificates are only as secure as the DNS names they are >> attached to. DNS hijacking occurs at a rate well in excess of 10,000 >> names a year and is probably much much higher if we could get better >> numbers. >> >> PHB - do you have a citation qualifying this? >> >> >> Not one I can share. But it seemed at the lower bound to me given the >> number of sites I use that have been hijacked recently. >> >> You folk should have much more accurate figures. Care to share? >> >> >> > Can you give us any indication if this is problem across major TLD's or > limited to a few. > > thanks > Olafur Given that all the cases I have seen have been hacks on the registrar, I can't see why it would be limited to one TLD. But very few of the sites I use are outside .com What I am referring to here is what happened to therpf.com recently when their domain name was hijacked by some squatter who then inserted a proxy to the real site but serving their own ads (plus malware no doubt). Wikipedia refers to it as Domain Hijacking rather than DNS, but that is what I meant. -- Website: http://hallambaker.com/
_______________________________________________ dane mailing list [email protected] https://www.ietf.org/mailman/listinfo/dane
