[Cerowrt-devel] "DNSSEC considered harmful"

Dave Taht dave.taht at gmail.com
Fri May 9 11:15:29 EDT 2014


As issues with any new technology go that's a fairly trivial list when
compared  to heartbleed or the spam filled swamp that email is.

I have a fairly long list of everything that is majorly wrong with the
internet that is worth working on I guess I should publish somewhere.

While I am unhappy negative proofs didn't work very well and it looks like
some sort of whitelist is needed to deal with broken on dnssec sites like
bankofamericas, I still view the benefits as outweighing the negatives.
On May 9, 2014 12:16 AM, "Maciej Soltysiak" <maciej at soltysiak.com> wrote:

> Hi,
>
> I read a twitter conversation last night where somebody said DNSSEC is
> harmful. I asked why and I got this littany of issues:
> http://ianix.com/pub/dnssec-outages.html
>
> I was blown away not only by the sheer evidence of outages, but especially
> by the quotes in last sections: Miscellaneous and What a mess.
>
> I don't know, have a look, I just wanted to share as I wasn't aware of
> things that didn't go well with DNSSEC. I'm not suggesting anything re
> Cerowrt here.
>
> Best regards,
> Maciej
>
>
> _______________________________________________
> Cerowrt-devel mailing list
> Cerowrt-devel at lists.bufferbloat.net
> https://lists.bufferbloat.net/listinfo/cerowrt-devel
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.bufferbloat.net/pipermail/cerowrt-devel/attachments/20140509/94b640fc/attachment-0002.html>


More information about the Cerowrt-devel mailing list