[Date Prev][Date Next]
Re: Reverse Lookup Server SSL Certivicate CN
--On Wednesday, January 07, 2004 3:19 PM -0800 "Kurt D. Zeilenga"
I am specifically referring to validation of Kerberos tickets
using information gained through non-secured DNS. That's broken.
DNS is easily spoofed or otherwise fooled into giving out
I certainly agree there. ;) My response was really geared to what Jack had
stated though, because that bit really didn't seem correct to me. ;)
Principal Software Developer
GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html