[Dnssec-trigger] dnssec-trigger Digest, Vol 2, Issue 3

W.C.A. Wijngaards wouter at NLnetLabs.nl
Thu Oct 13 12:01:36 UTC 2011


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Daniel,

This may not be precise, but vague:

hotspot: public wifi access point, such as your find in airports, hotels
or coffee sellers.

split-view: dns is not the dns that the rest of the internet sees, but
has different or additional contents.

captive portal: the thing that means you cannot access the internet
right away.

Best regards,
   Wouter

On 10/12/2011 03:55 PM, Daniel Ashford wrote:
> what do you mean by hotspot? And what is a split-view for the captive
> portal?
> 
> On Wed, Oct 12, 2011 at 9:00 PM, <dnssec-trigger-request at nlnetlabs.nl
> <mailto:dnssec-trigger-request at nlnetlabs.nl>> wrote:
> 
>     Send dnssec-trigger mailing list submissions to
>            dnssec-trigger at NLnetLabs.nl
> 
>     To subscribe or unsubscribe via the World Wide Web, visit
>            http://open.nlnetlabs.nl/mailman/listinfo/dnssec-trigger
>     or, via email, send a message with subject or body 'help' to
>            dnssec-trigger-request at NLnetLabs.nl
> 
>     You can reach the person managing the list at
>            dnssec-trigger-owner at NLnetLabs.nl
> 
>     When replying, please edit your Subject line so it is more specific
>     than "Re: Contents of dnssec-trigger digest..."
> 
> 
>     Today's Topics:
> 
>       1. Re: A new type of painful hotspot: split-view for the captive
>          portal (Paul Wouters)
>       2. Re: A new type of painful hotspot: split-view for the captive
>          portal (W.C.A. Wijngaards)
> 
> 
>     ----------------------------------------------------------------------
> 
>     Message: 1
>     Date: Tue, 11 Oct 2011 12:12:13 -0400 (EDT)
>     From: Paul Wouters <paul at xelerance.com <mailto:paul at xelerance.com>>
>     To: "W.C.A. Wijngaards" <wouter at NLnetLabs.nl>
>     Cc: dnssec-trigger at NLnetLabs.nl
>     Subject: Re: [Dnssec-trigger] A new type of painful hotspot:
>            split-view for the captive portal
>     Message-ID: <alpine.DEB.2.00.1110111211340.28017 at mail.xelerance.com
>     <mailto:alpine.DEB.2.00.1110111211340.28017 at mail.xelerance.com>>
>     Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
> 
>     On Mon, 10 Oct 2011, W.C.A. Wijngaards wrote:
> 
>     > In 0.5 I made the HotSpot SignOn menu item, that triggers insecure
>     mode
>     > so you can sign on to the broken signon page of this hotspot.
>     >
>     > You can also setup this from the commandline:
>     > $ dnssec-trigger-control hotspot_signon
>     > .. do the signon via web browser ..
>     > $ dnssec-trigger-control reprobe
>     > .. state should be back to DNSSEC secure again ..
> 
>     does it drop the cache at this point to clear any potential spoofed
>     records
>     when dnssec was off?
> 
>     Paul
> 
> 
>     ------------------------------
> 
>     Message: 2
>     Date: Wed, 12 Oct 2011 08:52:16 +0200
>     From: "W.C.A. Wijngaards" <wouter at NLnetLabs.nl>
>     To: Paul Wouters <paul at xelerance.com <mailto:paul at xelerance.com>>
>     Cc: dnssec-trigger at nlnetlabs.nl <mailto:dnssec-trigger at nlnetlabs.nl>
>     Subject: Re: [Dnssec-trigger] A new type of painful hotspot:
>            split-view for the captive portal
>     Message-ID: <4E953920.1040804 at nlnetlabs.nl
>     <mailto:4E953920.1040804 at nlnetlabs.nl>>
>     Content-Type: text/plain; charset=ISO-8859-1
> 
> On 10/11/2011 06:12 PM, Paul Wouters wrote:
>> On Mon, 10 Oct 2011, W.C.A. Wijngaards wrote:
> 
>>> In 0.5 I made the HotSpot SignOn menu item, that triggers
> insecure mode
>>> so you can sign on to the broken signon page of this hotspot.
>>>
>>> You can also setup this from the commandline:
>>> $ dnssec-trigger-control hotspot_signon
>>> .. do the signon via web browser ..
>>> $ dnssec-trigger-control reprobe
>>> .. state should be back to DNSSEC secure again ..
> 
>> does it drop the cache at this point to clear any potential
> spoofed records
>> when dnssec was off?
> 
> Yes.  It attempts to flush the OS system DNS cache too.
> (blabla /-flushdns on OSX and Windows).
> 
> Best regards,
>   Wouter

- ------------------------------

_______________________________________________
dnssec-trigger mailing list
dnssec-trigger at NLnetLabs.nl
http://open.nlnetlabs.nl/mailman/listinfo/dnssec-trigger


End of dnssec-trigger Digest, Vol 2, Issue 3
********************************************




> -- 
> omotheclowno25 at yahoo.com.au <mailto:omotheclowno25 at yahoo.com.au>



> _______________________________________________
> dnssec-trigger mailing list
> dnssec-trigger at NLnetLabs.nl
> http://open.nlnetlabs.nl/mailman/listinfo/dnssec-trigger

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
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=DERr
-----END PGP SIGNATURE-----



More information about the dnssec-trigger mailing list