DNSSEC and CVE-2012-1033 (Ghost domain names)

Florian Weimer fw at deneb.enyo.de
Mon Feb 13 22:05:58 UTC 2012

Previous message: DNSSEC and CVE-2012-1033 (Ghost domain names)
Next message: DNSSEC and CVE-2012-1033 (Ghost domain names)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

* Stephane Bortzmeyer:

> OK, so there is nothing that can be done at the registry level.

Doesn't the DNSSEC-based mitigation rely on RRSIGs whose validity does
not extend too far into the future?

Previous message: DNSSEC and CVE-2012-1033 (Ghost domain names)
Next message: DNSSEC and CVE-2012-1033 (Ghost domain names)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the bind-users mailing list