North American Network Operators Group|
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical
Re: Multiple DNS implementations vulnerable to cache poisoning
On Wed, 9 Jul 2008, Steven M. Bellovin wrote:
How many ISPs run DNS servers for customers? Start by signing those zones -- that has to be done in any event. Set up caching resolvers to verify signatures. "It is not your part to finish the task, yet you are not free to desist from it." (From the Talmud, circa 130.)
What is the estimated completion date to stop all spoofed IP packets, included but only DNS spoofing?