home bbs files messages ]

Forums before death by AOL, social media and spammers... "We can't have nice things"

   comp.misc      General topics about computers not cover      21,759 messages   

[   << oldest   |   < older   |   list   |   newer >   |   newest >>   ]

   Message 20,334 of 21,759   
   Richard Kettlewell to Grant Taylor   
   Re: [LINK] Calling time on DNSSEC?   
   27 Nov 24 08:40:16   
   
   From: invalid@invalid.invalid   
      
   Grant Taylor  writes:   
   > On 11/26/24 16:44, Computer Nerd Kev wrote:   
   >>   How have we got to this point?" ...   
   >   
   > Too many people stop once they achieve what they think is the minimum   
   > viable product.  Basic insecure DNS is that MVP when it comes to name   
   > resolution.   
   >   
   > People move on to other MVP tasks that demand their attention and   
   > never get back around to DNSSEC.   
   >   
   > I've been using DNSSEC for 10-15 years with effectively minimal   
   > problems.   
      
   I use it too, a bit.   
      
   It’s not enough. It can secure the name-to-address mapping but does   
   nothing for the security of any data sent or received. You need TLS (or   
   SSH, or whatever) as well, and those already deal with naming.  So it’s   
   natural to ask why someone would bother with DNSSEC as well, and hardly   
   surprising that mostly the answer is that people don’t.   
      
   --   
   https://www.greenend.org.uk/rjk/   
      
   --- SoupGate-DOS v1.05   
    * Origin: you cannot sedate... all the things you hate (1:229/2)   

[   << oldest   |   < older   |   list   |   newer >   |   newest >>   ]


(c) 1994,  bbs@darkrealms.ca