> > To break DNSSEC, a phishing site pretending as your parent CA and
> > requesting you enter your private key is often enough.
>
> Which like most things to do with security is a matter of
> education.
To which I should have added. With DNSSEC you *never* need
to disclose you private key.
Mark
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: [EMAIL PROTECTED]
_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop
