----- Original Message ----- From: "Eric W. Bates" <[EMAIL PROTECTED]> Subject: OT: SPF and DNSSEC
| Doesn't SPF and the general increase in the likelihood of DNS attack | necessitate signing zone files? | | We haven't done so yet because of the performance cost. Albitz and Liu | paint a pretty daunting picture in their book (DNS and BIND, 4th ed. pp | 362-363). We use djbdns and according to the author, it is immune from DNS attacks poisoning etc.. and so far no issues here. Bind on the other hand may have some issues. | | Are you folks already signing? Are you planning to? | I've registered 4 domains so far. Greg
