rfc3833 — Search

US rfc7208

https://www.rfc-editor.org/rfc/inline-errata/rfc7208.html

…r an <ip> value where the actual domain's record would evaluate to "fail". See [RFC3833] for a description of DNS weaknesses, and see [RFC4033] for a countermeasure. o The client IP address, <ip>, is assumed to be correct. In a modern, correctly configured system, the risk of thi…

2026-04-25 23:49 View archive →

US RFC 7208 - Sender Policy Framework (SPF) for Authorizing Use of Domains in Email, Version 1

https://tools.ietf.org/html/rfc7208

… an <ip> value where the actual domain's record would evaluate to "fail". See [ RFC3833 ] for a description of DNS weaknesses, and see [ RFC4033 ] for a countermeasure. o The client IP address, <ip>, is assumed to be correct. In a modern, correctly configured system, the risk of …

2026-04-25 16:47 View archive →

US RFC 9250: DNS over Dedicated QUIC Connections

https://www.rfc-editor.org/rfc/rfc9250

…Security Considerations A Threat Analysis of the Domain Name System is found in RFC3833 This analysis was written before the development of DoT, DoH, and DoQ, and probably needs to be updated. The security considerations of DoQ should be comparable to those of DoT RFC7858 . DoT a…

2026-04-24 20:20 View archive →

US RFC 6376: DomainKeys Identified Mail (DKIM) Signatures

https://www.rfc-editor.org/rfc/rfc6376

…tacks against the DNS must be considered. While the DNS is currently insecure [ RFC3833 ], these security problems are the motivation behind DNS Security (DNSSEC) [ RFC4033 ], and all users of the DNS will reap the benefit of that work. DKIM is only intended as a "sufficient" met…

2026-04-25 11:49 View archive →