On Tue, Feb 1, 2011 at 2:30 AM, Paul Wouters p...@xelerance.com wrote:
On Tue, 1 Feb 2011, Brian Dickson wrote:
This may be good enough for DNSSEC purposes.
At least to then do ntp and and see that it matches our rough expectation.
Though in all, if the attacker is your controlling
On Tue, 1 Feb 2011, Brian Dickson wrote:
However, once you have a trust anchor (root key) that you have a lot
of confidence in, you can then do some cute DNSSEC tricks to get a
rough idea of time, and then a better idea of time.
First, look at the contents of the RRSIGs for the root. If you
