David Conrad wrote: >> Then, plain DNS modified to have 32 (or 64?) bit messages >> ID is as secure as DNSSEC. > > How does a 32 or 64 bit message ID protect you from on-path > MITM/injection attacks?
Tell it to those who are asserting plain NTP were good enough
for DNSSEC.
Masataka Ohta
_______________________________________________
DNSOP mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dnsop
