[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

DNSSEC?

Subject: DNSSEC?
From: bzs at world.std.com (Barry Shein)
Date: Fri, 11 Apr 2014 15:27:43 -0400
In-reply-to: <[email protected]>
References: <[email protected]> <[email protected]>

On April 11, 2014 at 11:44 dougb at dougbarton.us (Doug Barton) wrote:
 > On 04/11/2014 11:35 AM, Barry Shein wrote:
 > > So, DNSSEC is also compromised by this heartbleed bug, right?
 > 
 > There is nothing in the DNSSEC protocol that requires the Heartbeat 
 > functionality. However whether a specific implementation of DNS software 
 > is vulnerable or not depends on how it's compiled. I would expect that 
 > most would not be. ISC for example just released a statement that BIND 
 > is not:
 > 
 > https://lists.isc.org/pipermail/bind-users/2014-April/092944.html

Cool, good news.

-- 
        -Barry Shein

The World              | bzs at TheWorld.com           | http://www.TheWorld.com
Purveyors to the Trade | Voice: 800-THE-WRLD        | Dial-Up: US, PR, Canada
Software Tool & Die    | Public Access Internet     | SINCE 1989     *oo*

Follow-Ups:
- DNSSEC?
  - From: christopher.morrow at gmail.com (Christopher Morrow)

References:
- DNSSEC?
  - From: bzs at world.std.com (Barry Shein)
- DNSSEC?
  - From: dougb at dougbarton.us (Doug Barton)

Prev by Date: DNSSEC?
Next by Date: Fwd: [[Infowarrior] - NSA Said to Have Used Heartbleed Bug for Years]
Previous by thread: DNSSEC?
Next by thread: DNSSEC?
Index(es):
- Date
- Thread