[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Trouble with Sender Authentication

To: IETF MARID WG <ietf-mxcomp@xxxxxxx>
Subject: Re: Trouble with Sender Authentication
From: Scott Kitterman <scott@xxxxxxxxxxxxx>
Date: Wed, 08 Nov 2006 13:10 -0500
List-archive: <http://www.imc.org/ietf-mxcomp/mail-archive/>
List-id: <ietf-mxcomp.imc.org>
List-unsubscribe: <mailto:ietf-mxcomp-request@imc.org?body=unsubscribe>
Sender: owner-ietf-mxcomp@xxxxxxxxxxxx

On Wed, 8 Nov 2006 09:15:29 -0800 Douglas Otis <dotis@xxxxxxxxxxxxxx> wrote:
>
>
>On Nov 7, 2006, at 6:10 PM, Scott Kitterman wrote:
>
>>
>> On Tuesday 07 November 2006 18:41, Douglas Otis wrote:
>>
>>> Obsoleting existing libraries and related scripts as needed due to  
>>> the DDoS potential.
>>
>> When you say the word script, do you mean SPF records (Please, this  
>> is meant to be a yes/no question, there's no need to write a  
>> dissertation that repeats the arguements made earlier in the  
>> thread.  I read those already.)?
>
>The concern is with libraries that execute scripts labeled as SPF 1  
>or 2 contained within DNS resource records.  A potential attack  
>utilizing just the access of these resources records has not been  
>described.

Is that a Yes?

Scott K

Follow-Ups:
- Re: Trouble with Sender Authentication
  - From: Douglas Otis

Prev by Date: Re: Trouble with Sender Authentication
Next by Date: Re: Trouble with Sender Authentication
Previous by thread: Re: Trouble with Sender Authentication
Next by thread: Re: Trouble with Sender Authentication
Index(es):
- Date
- Thread