On 07.12.2015 14:52, Matthew Miller wrote: > On Mon, Dec 07, 2015 at 12:23:34PM +0100, Lennart Poettering wrote: > >> As you've said, this is basically an attack and hijacking of someone's > >> else domain name space. It is not correct and it is not expected that > >> this will work with DNSSEC. > > Humm, I find that way too cavalier... I am pretty sure this is a total > > deal breaker for your feature. You cannot just break everybody's > > network and not consider that a problem that *you* have to think about > > rather than just ignoring it completely. > > I agree with Lennart. Whether or not this is expected to work with > DNSSEC is of academic interest given that people will expect it to work > with _their computers_, regardless of what they're running. I guess next time I'll not send thing to devel list that I don't want to be picked on. This is completely out of context. Tomas -- Tomas Hozza Software Engineer - EMEA ENG Developer Experience PGP: 1D9F3C2D UTC+1 (CET) Red Hat Inc. http://cz.redhat.com -- devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxxx http://lists.fedoraproject.org/admin/lists/devel@xxxxxxxxxxxxxxxxxxxxxxx
