IETF Logo Mail Archive

Re: [dnsext] [DNSOP] DNS vulnerabilities

SM <sm@resistor.net> Tue, 05 November 2013 22:57 UTC

Return-Path: <sm@resistor.net>
X-Original-To: dnsext@ietfa.amsl.com
Delivered-To: dnsext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AD18911E815E for <dnsext@ietfa.amsl.com>; Tue, 5 Nov 2013 14:57:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.581
X-Spam-Level:
X-Spam-Status: No, score=-102.581 tagged_above=-999 required=5 tests=[AWL=0.018, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cBTtf8FshNmz for <dnsext@ietfa.amsl.com>; Tue, 5 Nov 2013 14:57:15 -0800 (PST)
Received: from mx.ipv6.elandsys.com (mx.ipv6.elandsys.com [IPv6:2001:470:f329:1::1]) by ietfa.amsl.com (Postfix) with ESMTP id E04C711E811A for <dnsext@ietf.org>; Tue, 5 Nov 2013 14:57:14 -0800 (PST)
Received: from SUBMAN.resistor.net (IDENT:sm@localhost [127.0.0.1]) (authenticated bits=0) by mx.elandsys.com (8.14.5/8.14.5) with ESMTP id rA5Mv9PV014887; Tue, 5 Nov 2013 14:57:11 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=opendkim.org; s=mail2010; t=1383692233; bh=jkQUBHK50lnIPoQyW9aetiWlduA/RWoDccKAvkZ0AQs=; h=Date:To:From:Subject:Cc:In-Reply-To:References; b=gJaFpEzTPUJeaOJZrY1mWUrSjn2+m0Q74PFRjAWLthbjO+svs9wD0rNMW7IN61qGR aksmQDyFLec/BxfXQ6jMupEQkFRYFugfViEBip3yXxVKPKxYnvcDjYN9Hm3nFRUd0/ Uxcv7J8NS1gPVzAGF2taMQ7c2bkFC9TD3h7k61Ms=
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=resistor.net; s=mail; t=1383692233; i=@resistor.net; bh=jkQUBHK50lnIPoQyW9aetiWlduA/RWoDccKAvkZ0AQs=; h=Date:To:From:Subject:Cc:In-Reply-To:References; b=LUF9yQ+QuqK+USHpgoCxWNRmRjfXr1uIBg1YPNKPb+xrTm2U/CWsDDrsMAyXeYE7h 4qhmGDETBBH4dozUMOBZV4FHQvAwv2xYjvRdAEFucRX8E31NXUjpI3OaBduy9JTQMt IUvqVylY9L6GtGtXMDdHeBNCfmCWqQBcUb8ADix8=
Message-Id: <6.2.5.6.2.20131105144849.0cca0958@resistor.net>
X-Mailer: QUALCOMM Windows Eudora Version 6.2.5.6
Date: Tue, 05 Nov 2013 14:57:02 -0800
To: Nicholas Weaver <nweaver@icsi.berkeley.edu>
From: SM <sm@resistor.net>
In-Reply-To: <0536EF5D-7567-45B8-851A-A696B6DBB235@icsi.berkeley.edu>
References: <008a01ced1d8$41885d40$c49917c0$@rozanak.com> <5271CF93.8000908@necom830.hpcl.titech.ac.jp> <001301ced617$8090fae0$81b2f0a0$@rozanak.com> <52734CB0.60506@necom830.hpcl.titech.ac.jp> <sjmr4b0dvb7.fsf@mocana.ihtfp.org> <0536EF5D-7567-45B8-851A-A696B6DBB235@icsi.berkeley.edu>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Cc: dnsext@ietf.org
Subject: Re: [dnsext] [DNSOP] DNS vulnerabilities
X-BeenThere: dnsext@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsext>, <mailto:dnsext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsext>
List-Post: <mailto:dnsext@ietf.org>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Nov 2013 22:57:17 -0000

Hi Nicholas,
At 07:18 01-11-2013, Nicholas Weaver wrote:
>Certified versions of OpenSSL do have Dual_EC_DRBG, although its not 
>by default (or is it?).

It will likely be removed.

Regards,
-sm

v2.40.4 | Report a Bug | By Email | System Status