[ratelimits] Poor CERT warning message
antoin.verschuren at sidn.nl
Wed Sep 11 12:50:25 UTC 2013
-----BEGIN PGP SIGNED MESSAGE-----
Op 10-09-13 23:10, Geert Jan de Groot schreef:
> Please have a look at:
> I'm not sure about what to do against spread of this
I think the advisory is bad and incomplete as well.
The French researchers confirmed to me that they would change their
conclusions of the report after consulting DNS experts, but apparently
the CERT has not changed it's advisory nor asked for a second opinion
after they drafted this advisory based on the preliminary report.
I've written a blog article about it on http://www.sidnlabs.nl, that
will be explained on http://www.dnssec.nl in some days as well.
(That's also in Dutch only, but at least you'll have pointers for the
I've heard other DNS experts intent to do the same.
The vulnerability and research will be presented and discussed at the
next DNS-OARC meeting:
Technical Policy Advisor SIDN
Meander 501, PO Box 5022, 6802 EA Arnhem, The Netherlands
P: +31 26 3525500 M: +31 6 23368970
Mailto: antoin.verschuren at sidn.nl
XMPP: antoin.verschuren at jabber.sidn.nl
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
-----END PGP SIGNATURE-----
More information about the ratelimits