And
whats to say they don't get around our methods of blacklisting it by changing
the IP around every zone update?
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]On Behalf Of [EMAIL PROTECTED]
Sent: Tuesday, September 16, 2003 2:18 PM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Re: Verisign brain damage and DNSSec.....Was:Re: What *are* they smoking?On Tue, 16 Sep 2003 11:08:11 PDT, [EMAIL PROTECTED] said:
> > On Tue, 16 Sep 2003 09:59:40 PDT, [EMAIL PROTECTED] said:> thats one aspect yes. the valdiation chain should tell
> you who signed the delegations. It won't lie.
> you will know that V'sign put that data there.How frikking many hacks will we need to BIND9 to work around this braindamage?
One to stuff back in the NXDomain if the A record points there, another to
do something with make-believe DNSsec from them..... What's next?
