Archives
Archives
| From: | Maxim Kammerer <mk@×××.su> | ||
|---|---|---|---|
| To: | gentoo-dev@l.g.o | ||
| Subject: | Re: [gentoo-dev] DNSSEC (w/ DLV) live on *.dev.gentoo.org | ||
| Date: | Mon, 07 Jan 2013 14:35:37 | ||
| Message-Id: | CAHsXYDA3fdXHVbNqZga1h1j3-H_J_rbTw3-zLZSCGx1+JnJpBQ@mail.gmail.com | ||
| In Reply to: | [gentoo-dev] DNSSEC (w/ DLV) live on *.dev.gentoo.org by "Robin H. Johnson" |
||
| 1 | On Mon, Jan 7, 2013 at 3:31 AM, Robin H. Johnson <robbat2@g.o> wrote: |
| 2 | > Thereafter, I'd also like to deploy DANE and SSH |
| 3 | > fingerprints in DNS, and remove our reliance any elements of the CA |
| 4 | > chain. |
| 5 | |
| 6 | Isn't DANE highly experimental and only supported by a couple of |
| 7 | browser plugins? Also, how widespread is client DNSSEC support? E.g., |
| 8 | I enabled DNSSEC for my domain, but not sure yet whether DNS |
| 9 | resolution anywhere will fail in case DNS responses are spoofed. |
| 10 | |
| 11 | -- |
| 12 | Maxim Kammerer |
| 13 | Liberté Linux: http://dee.su/liberte |
| Subject | Author |
|---|---|
| Re: [gentoo-dev] DNSSEC (w/ DLV) live on *.dev.gentoo.org | Peter Stuge <peter@×××××.se> |
| Re: [gentoo-dev] DNSSEC (w/ DLV) live on *.dev.gentoo.org | "Robin H. Johnson" <robbat2@g.o> |
| Re: [gentoo-dev] DNSSEC (w/ DLV) live on *.dev.gentoo.org | Benjamin Lee <ben@××××××.com> |