Bill Stewart <[EMAIL PROTECTED]> writes:
> At 11:15 PM 06/28/2003 -0400, Steven M. Bellovin wrote:
>>In message <[EMAIL PROTECTED]>, Bill Stewart writes:
>> >This looks like it has the ability to work around DNSSEC.
>> >Somebody trying to verify that they'd correctly reached yahoo.com
>> >would in
Bill Stewart <[EMAIL PROTECTED]> writes:
>>* Your laptop see and uses the name "yahoo.com.attackersdomain.com".
>> You may be able to verify this using your DNSSEC root key, if the
>> attackersdomain.com people have set up DNSSEC for their spoofed
>> entries, but unless you are using bad sof
