> What security implications? DNS is such a broken, insecure protocol > that it would be difficult for it to get *worse*. This would actually > make it better since the second tier of DNS servers could actually use a > fully encrypted, keyed, and authenticated zone transfer. > > See DNSSEC: http://www.dnssec.net/
I heard about DNSSEC 5 years ago. It is really frustrating that everyone knows how to fix/improve DNS but years/decades may pass before improvements actually get implemented. Tim Berns-Lee, father of web, calls DNS the 'Achille's heal' of the Web. Makes sense to me. cs -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
