[ogWiFi] Restrictions to public sites via ogWifi
Michael Richardson
mcr at sandelman.ottawa.on.ca
Mon May 18 19:54:49 EDT 2009
>>>>> "Ian" == Ian Gough <igough57 at gmail.com> writes:
>> My problem with OpenDNS is that it is disruptive to significant
>> security against the very real, and relatively common DNS attacks
>> that are occuring today: these mostly affect bank sites.
Ian> I guess I don't understand this. How is using OpenDNS
Ian> disruptive to security? Is it any more insecure than the ISP's
Ian> DNS server?
In order for OpenDNS to function, it has to either change the answers
to DNS lookups, or it has to return "site not found". Both of these
kinds of changes are things that DNSSEC is designed to prevent.
The ISP's DNS can be have it's security features turned on. As well,
it is expected that home routers will turn on security features in new
firmwares. (With OpenWRT, we could turn them on today)
--
] Y'avait une poule de jammé dans l'muffler!!!!!!!!! | firewalls [
] Michael Richardson, Sandelman Software Works, Ottawa, ON |net architect[
] mcr at sandelman.ottawa.on.ca http://www.sandelman.ottawa.on.ca/ |device driver[
] panic("Just another Debian GNU/Linux using, kernel hacking, security guy"); [
More information about the Ogwifi
mailing list