[prev in list] [next in list] [prev in thread] [next in thread]
List: dns-operations
Subject: Re: [dns-operations] DNS challenge+response paper
From: Petr Špaček <petr.spacek () nic ! cz>
Date: 2018-06-22 11:47:17
Message-ID: 0c02b2de-0c9d-35eb-dfc4-7159dfd44be8 () nic ! cz
[Download RAW message or body]
On 22.6.2018 12:56, Tony Finch wrote:
> Mark Andrews <marka@isc.org> wrote:
>>
>> DTLS also brings with it all the parts of the code that have been really
>> buggy in OpenSSL to both the client and the server.
>
> Yes, it gives me the heebie-jeebies, but I think I'm remembering the
> 2014-2016 period when there were a lot of really nasty DTLS bugs. It has
> been a lot quieter in the last two years, which is good to see. Perhaps my
> wariness is no longer justified...
We have seen bunch of bugs in implementations of TLS, DTLS, and DNSSEC
validation as well.
Does it mean we should be not be using any of these technologies?
I do not think so.
--
Petr paček @ CZ.NIC
_______________________________________________
dns-operations mailing list
dns-operations@lists.dns-oarc.net
https://lists.dns-oarc.net/mailman/listinfo/dns-operations
dns-operations mailing list
https://lists.dns-oarc.net/mailman/listinfo/dns-operations
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic