[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Nxdomain redirect revenue

Subject: Nxdomain redirect revenue
From: owen at delong.com (Owen DeLong)
Date: Tue, 27 Sep 2011 22:23:34 -0700
In-reply-to: <CAAAwwbX8LE7X1vNSr+=ZOWdRjgXxRUy=PaC_A21Vi46-H-EEgA@mail.gmail.com>
References: <CAD6AjGQpqTMP9bKAMz4HmWcH_GOA7pWrFqntteqWj1YCBPZgUg@mail.gmail.com> <[email protected]> <[email protected]> <CAAAwwbWYQfpoHEReiyamy8fO0g0Edh=1+1usKkMk22PWO+i=Pg@mail.gmail.com> <CAL9jLaaOdE3djf6UnYGwdBnuGRnQ3iMbc+QAMT4nYtKL5LDhdg@mail.gmail.com> <CAAAwwbWSRk_gtngLRg=nQHSQRGG80J__DY6fUhs_aHcxO5bMaw@mail.gmail.com> <CAE4VuKFASMmaNnDexDfF_8YiEp8dmL6vE+4Y2Cmx3X38GqTtjA@mail.gmail.com> <CAAAwwbVLmh+MsXU-axOy=twz+oWvszyZ3O8n-bMqpna4tR7Xtg@mail.gmail.com> <[email protected]> <CAAAwwbX8LE7X1vNSr+=ZOWdRjgXxRUy=PaC_A21Vi46-H-EEgA@mail.gmail.com>

On Sep 27, 2011, at 4:55 PM, Jimmy Hess wrote:

> On Tue, Sep 27, 2011 at 6:09 PM, Owen DeLong <owen at delong.com> wrote:
>> On Sep 27, 2011, at 3:46 PM, Jimmy Hess wrote:
>> 
>> No, it isn't because it requires you to send the domain portion of the URL
>> in clear text and it may be that you don't necessarily want to disclose even
>> that much information about your browsing to the public.
> 
> That's OK.  You're kind of mincing security objectives here.
> In regards to preventing tactics such as domain hijacking bt service providers,
> the goal behind this would be integrity, not confidentiality.
> 
> The objective of using SSL is not to strongly encrypt data to keep it
> secret, it's
> to apply whatever is necessary to provide a level of integrity assurance.
> 
> The SSL cipher can almost be the null cipher, for all it matters,
> but at least RC4  56-bit  or so would be needed,  because
> the null cipher doesn't have message digests in TLS.
> 
> --
> -JH

As has been pointed out... SSL certs do almost nothing for integrity.

Owen

References:
- Nxdomain redirect revenue
  - From: cb.list6 at gmail.com (Cameron Byrne)
- Nxdomain redirect revenue
  - From: fweimer at bfk.de (Florian Weimer)
- Nxdomain redirect revenue
  - From: william.allen.simpson at gmail.com (William Allen Simpson)
- Nxdomain redirect revenue
  - From: mysidia at gmail.com (Jimmy Hess)
- Nxdomain redirect revenue
  - From: morrowc.lists at gmail.com (Christopher Morrow)
- Nxdomain redirect revenue
  - From: mysidia at gmail.com (Jimmy Hess)
- Nxdomain redirect revenue
  - From: dave at mvn.net (David E. Smith)
- Nxdomain redirect revenue
  - From: mysidia at gmail.com (Jimmy Hess)
- Nxdomain redirect revenue
  - From: owen at delong.com (Owen DeLong)
- Nxdomain redirect revenue
  - From: mysidia at gmail.com (Jimmy Hess)

Prev by Date: Authoritative DNS server for 12.54.94.0/23 PTR
Next by Date: Authoritative DNS server for 12.54.94.0/23 PTR
Previous by thread: Nxdomain redirect revenue
Next by thread: Nxdomain redirect revenue
Index(es):
- Date
- Thread