Ardo van Rangelrooij wrote: > And using IPsec for those solve that issue also... > > I am not saying that IPsec is the solution for all security issues but > it has the big advantage that it is available now and works without > requiring changes to existing software.
I understand your point of view, however it still fails in terms of efficiency, and all name servers would receive copies of the query, this is something that I've attempted to protect against since the information in the query can be as important as the returned data. -- Best regards, Duane http://www.freeauth.org - Enterprise Two Factor Authentication http://www.nodedb.com - Think globally, network locally http://www.sydneywireless.com - Telecommunications Freedom http://e164.org - Global Communication for the 21st Century "In the long run the pessimist may be proved right, but the optimist has a better time on the trip."
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Pdns-users mailing list [email protected] http://mailman.powerdns.com/mailman/listinfo/pdns-users
