On Mon, Dec 07, 2015 at 12:23:34PM +0100, Lennart Poettering wrote:
> As you've said, this is basically an attack and hijacking of
someone's
> else domain name space. It is not correct and it is not expected that
> this will work with DNSSEC.
Humm, I find that way too cavalier... I am pretty sure this is a total
deal breaker for your feature. You cannot just break everybody's
network and not consider that a problem that *you* have to think about
rather than just ignoring it completely.
I agree with Lennart. Whether or not this is expected to work with
DNSSEC is of academic interest given that people will expect it to work
with _their computers_, regardless of what they're running.
--
Matthew Miller
<mattdm(a)fedoraproject.org>
Fedora Project Leader