[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: draft-ietf-dnsext-forgery-resilience-01.txt

To: bert hubert <bert.hubert@netherlabs.nl>
Subject: Re: draft-ietf-dnsext-forgery-resilience-01.txt
From: Stephane Bortzmeyer <bortzmeyer@nic.fr>
Date: Mon, 12 Nov 2007 20:35:43 -0200
Cc: namedroppers@ops.ietf.org
In-reply-to: <20071112220343.GA19255@outpost.ds9a.nl>
References: <20071110214233.GB8260@laperouse.bortzmeyer.org> <87sl3biytx.fsf@mid.deneb.enyo.de> <27988.1194879471@sa.vix.com> <20071112154535.GC31775@outpost.ds9a.nl> <86081.1194888591@sa.vix.com> <20071112220343.GA19255@outpost.ds9a.nl>
User-agent: Mutt/1.5.15+20070412 (2007-04-11)

On Mon, Nov 12, 2007 at 11:03:44PM +0100,
 bert hubert <bert.hubert@netherlabs.nl> wrote 
 a message of 34 lines which said:

>   Implementations MUST use Query-IDs that are hard to predict

More detailed, with the help of Alex Bligh:

Implementations MUST use Query-IDs that are hard to predict for a
third party with access to wire data. This could, for instance, be
achieved by introducing a random [RFC 4086] or pseudo-random component
into the mechanism used to select the ID

--
Read on /., about MS-Windows error messages:

Your system must meet the requirements to be able to run the Windows
Random Number Generator on Vista. Otherwise, you will need to use
Windows Number Generator Basic. The only number WNGB can generate is
4.

--
to unsubscribe send a message to namedroppers-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/namedroppers/>

Follow-Ups:
- Re: draft-ietf-dnsext-forgery-resilience-01.txt
  - From: Danny Mayer <mayer@gis.net>
- Re: draft-ietf-dnsext-forgery-resilience-01.txt
  - From: Stephane Bortzmeyer <bortzmeyer@nic.fr>
- Re: draft-ietf-dnsext-forgery-resilience-01.txt
  - From: Olafur Gudmundsson <ogud@ogud.com>

References:
- draft-ietf-dnsext-forgery-resilience-01.txt
  - From: Stephane Bortzmeyer <bortzmeyer@nic.fr>
- Re: draft-ietf-dnsext-forgery-resilience-01.txt
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: draft-ietf-dnsext-forgery-resilience-01.txt
  - From: Paul Vixie <paul@vix.com>
- Re: draft-ietf-dnsext-forgery-resilience-01.txt
  - From: bert hubert <bert.hubert@netherlabs.nl>
- Re: draft-ietf-dnsext-forgery-resilience-01.txt
  - From: Paul Vixie <paul@vix.com>
- Re: draft-ietf-dnsext-forgery-resilience-01.txt
  - From: bert hubert <bert.hubert@netherlabs.nl>

Prev by Date: Re: draft-ietf-dnsext-forgery-resilience-01.txt
Next by Date: Re: draft-ietf-dnsext-forgery-resilience-01.txt
Previous by thread: Re: draft-ietf-dnsext-forgery-resilience-01.txt
Next by thread: Re: draft-ietf-dnsext-forgery-resilience-01.txt
Index(es):
- Date
- Thread