GeneralThis forum is for non-technical general discussion which can include both Linux and non-Linux topics. Have fun!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
"The key will play an important role in the new DNSSec security extension, because it will make spoofing IP-addresses impossible. By forcing the IANA [Internet Assigned Numbers Authority] to hand out a copy of the master key, the US government will be the only institution that is able to spoof IP addresses and be able to break into computers connected to the Internet without much effort."
I'm a little confused as to what exactly this implies. Does this mean that if the Department of Homeland Security actually gets its grubby little hands on this "master key" they will have the ability to hack into any website they feel dissents from their policies and essentially wipe the site off the face of the internet?
OH, so they're not even implementing it? Guess I got all hot and bothered for nothing then. Lol... reading it over, the word, "new" didn't quite register.
No, they are implementing it. It's not just a new DNS server/service though. It's a complete change to the DNS protocol itself. As such they're going to need other people's cooperation to get it implemented in a timely manner. And that just doesn't appear to be happening outside the USA, where many anycast root servers reside.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.