Re: [saag] What does DNSSec protect? (Re: Last Call: <draft-dukhovni-opportunistic-security-01.txt> (Opportunistic Security: some protection most of the time) to Informational RFC)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On 11/08/2014 06:18, Andrew Sullivan wrote:
> On Sun, Aug 10, 2014 at 05:35:03PM -0000, John Levine wrote:
>> As far as I can tell, we don't have a good word to describe what
>> DNSSEC does.
> 
> Nonsense.  "This data was not tampered with while in transit from the
> authoritative server to you."  That's what it does.

What people are pointing out is that this is no better, and no worse,
than the seal on a snake oil bottle proving that the snake oil
has not been tampered with since it left the factory.

Unfortunately, the average user can easily confuse that with an
assurance that the snake oil will cure your illness. There isn't
much we can do to change that.

    Brian
[Index of Archives]     [IETF Annoucements]     [IETF]     [IP Storage]     [Yosemite News]     [Linux SCTP]     [Linux Newbies]     [Fedora Users]