Multiple DNS implementations vulnerable to cache poisoning

Russ Mundy mundy at
Thu Jul 10 21:51:12 UTC 2008

At 10:24 AM -0700 7/10/08, David Conrad wrote:
>Already gotten a hint that something along these lines would be
>desirable for LAX.  I can propose something to the PC -- which would
>be more useful for folks, a more general DNSSEC signing workshop or a
>focused presentation on IANA's stuff?

Folks might find the DNSSEC session at the recent ICANN meeting interesting
since it focused on DNSSEC in the field and DNSSEC tools.  Descriptions of
the presentations as well as the slides are available at:

I imagine that folks might want something different at LAX but I's be happy
to work with drc to put together a DNSSEC session of some sort if there was


>On Jul 9, 2008, at 7:55 PM, Christopher Morrow wrote:
>> On Wed, Jul 9, 2008 at 7:28 PM, David Conrad <drc at>
>> wrote:
>>> On Jul 9, 2008, at 4:17 PM, Randy Bush wrote:
>>>> aside from just getting some cctlds signed, i will be interested
>>>> in the
>>>> tools, usability, work flow, ...  i.e. what is it like for a poor
>>>> innocent cctld which wants to sign their zone?
>>> If there is sufficient interest, we could do a bar bof to describe
>>> some of
>>> the tools IANA has...
>> I think Sandy Murphy or other Sparta folks have presented some of the
>> work they've done on this... Perhaps finding one/some of them and
>> having a more operations focused presentation in LAX or ... is a good
>> idea as well?
>> -Chris

More information about the NANOG mailing list