From: | Maxim Kammerer <mk@×××.su> | ||
---|---|---|---|
To: | gentoo-dev@l.g.o | ||
Subject: | Re: [gentoo-dev] DNSSEC (w/ DLV) live on *.dev.gentoo.org | ||
Date: | Mon, 07 Jan 2013 14:35:37 | ||
Message-Id: | CAHsXYDA3fdXHVbNqZga1h1j3-H_J_rbTw3-zLZSCGx1+JnJpBQ@mail.gmail.com | ||
In Reply to: | [gentoo-dev] DNSSEC (w/ DLV) live on *.dev.gentoo.org by "Robin H. Johnson" |
1 | On Mon, Jan 7, 2013 at 3:31 AM, Robin H. Johnson <robbat2@g.o> wrote: |
2 | > Thereafter, I'd also like to deploy DANE and SSH |
3 | > fingerprints in DNS, and remove our reliance any elements of the CA |
4 | > chain. |
5 | |
6 | Isn't DANE highly experimental and only supported by a couple of |
7 | browser plugins? Also, how widespread is client DNSSEC support? E.g., |
8 | I enabled DNSSEC for my domain, but not sure yet whether DNS |
9 | resolution anywhere will fail in case DNS responses are spoofed. |
10 | |
11 | -- |
12 | Maxim Kammerer |
13 | Liberté Linux: http://dee.su/liberte |
Subject | Author |
---|---|
Re: [gentoo-dev] DNSSEC (w/ DLV) live on *.dev.gentoo.org | Peter Stuge <peter@×××××.se> |
Re: [gentoo-dev] DNSSEC (w/ DLV) live on *.dev.gentoo.org | "Robin H. Johnson" <robbat2@g.o> |
Re: [gentoo-dev] DNSSEC (w/ DLV) live on *.dev.gentoo.org | Benjamin Lee <ben@××××××.com> |