On Mon, Mar 11, 2019 at 08:55:18AM +0530, nalini elkins <nalini.elk...@e-dco.com> wrote a message of 202 lines which said:
> The questions that the Fortune 50 company architect asked were something > like this: > > 1. You mean that DNS could be resolved outside my enterprise? I suggest to explain to this person that it was possible before, as any malware author discovered. > 2. So whoever that is that resolves my DNS sees the pattern and frequency > of what sites my company goes to? RFC 7626 :-) > It would be good to also discuss how to warn enterprises that this > is about to happen. I wonder if an announcement via CERT or another > group may be appropriate. If people responsible for networks of Fortune 50 company don't know that it is difficult to stop unwanted communication (except when you control all the endpoints, or when you airgap your network), then it is indeed a problem :-) _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
