On Mon, Apr 20, 2015 at 09:57:06AM -0700,
Paul Hoffman paul.hoff...@vpnc.org wrote
a message of 98 lines which said:
The definition in the draft includes ideas from RFC 5625, which
seems to be the much more common definition of forwarder used
today. However, the WG is free to define this
On 04/22/2015 02:33 PM, Stephane Bortzmeyer wrote:
[snip].
Please propose specific wording for the merge so the WG can see if
they like it better.
Policy-implementing resolver -- A resolver that changes some answers
it returns based on policy criteria, such as to prevent access to
malware
All
We've finalized the Interim Meeting to discuss the questions around RFC
6761 and the Special Names Registry.
Details:
Date: Tuesday, 12 May 2015
Time: 1600-1800 UTC (1200-1400 EDT)
An agenda is coming together, but all drafts that address this issue are
currently up for discussion
Stephane Bortzmeyer wrote:
On Mon, Apr 20, 2015 at 09:57:06AM -0700,
Paul Hoffman paul.hoff...@vpnc.org wrote
a message of 98 lines which said:
Passive DNS -- A mechanism to collect large amounts of DNS data
by storing queries and responses from recursive servers.
Most passive
The DNS Operations (DNSOP) Working Group will hold a virtual meeting to
discuss the questions around RFC 6761 and the Special Names Registry.
Date: Tuesday, 12 May 2015
Time: 1600-1800 UTC (1200-1400 EDT)
JOIN WEBEX MEETING:
A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Domain Name System Operations Working Group
of the IETF.
Title : Definition and Use of DNSSEC Negative Trust Anchors
Authors : Paul Ebersman
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Please correct me if I'm wrong. I think there is a problem in this
draft.
Although the draft explicitly addresses Birthday Attacks it is still
vulnerable. Section 10.2 (Birthday Attacks) states:
To counter this, every edns-client-subnet option in a