[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Nxdomain redirect revenue

Subject: Nxdomain redirect revenue
From: pingwin at gmail.com (Brian Smith)
Date: Tue, 04 Oct 2011 15:55:22 -0400
In-reply-to: <CAGFn2k3wbhBxRxtKaOU8V8F4FmAZuqB59WQw_EGwwE=ekghrwA@mail.gmail.com>
References: <CAD6AjGQpqTMP9bKAMz4HmWcH_GOA7pWrFqntteqWj1YCBPZgUg@mail.gmail.com> <[email protected]> <[email protected]> <CAAAwwbWYQfpoHEReiyamy8fO0g0Edh=1+1usKkMk22PWO+i=Pg@mail.gmail.com> <CAL9jLaaOdE3djf6UnYGwdBnuGRnQ3iMbc+QAMT4nYtKL5LDhdg@mail.gmail.com> <CAAAwwbWSRk_gtngLRg=nQHSQRGG80J__DY6fUhs_aHcxO5bMaw@mail.gmail.com> <CAE4VuKFASMmaNnDexDfF_8YiEp8dmL6vE+4Y2Cmx3X38GqTtjA@mail.gmail.com> <CAGFn2k3wbhBxRxtKaOU8V8F4FmAZuqB59WQw_EGwwE=ekghrwA@mail.gmail.com>

+1 to the use of CAA/DANE

-brian


On 09/27/2011 07:34 PM, Rubens Kuhl wrote:
> On Tue, Sep 27, 2011 at 7:29 PM, David E. Smith<dave at mvn.net>  wrote:
>> On Tue, Sep 27, 2011 at 17:08, Jimmy Hess<mysidia at gmail.com>  wrote:
>>> That is, HTTPs should become assumed.
>> As much as that would be wonderful from a security standpoint, IMO
>> it's not realistic to expect every mom-and-pop posting a personal Web
>> site to pay extra for a static/dedicated IP address from their hosting
>> company (even if IPv6 were widely deployed, Web hosts probably would
>> charge extra for this just on principle), and to pay extra for an SSL
>> certificate, even a "weak" one that only verifies the domain name.
> Self-signed certificates published thru DNSSEC using CAA/DANE can cost nothing.
> (And somebody else pointed out SNI to have TLS work without exclusive
> IP requirement)
>
> Rubens
>

Prev by Date: Nxdomain redirect revenue
Next by Date: passive bandwidth estimation
Previous by thread: Nxdomain redirect revenue
Next by thread: passive bandwidth estimation
Index(es):
- Date
- Thread