I got metaphorically spanked a couple of days ago. Folks have been talking about the Fearless Girl statue ever since it was dropped in Manhattan’s Financial District some
five weeks ago. I have occasionally added a comment or two to some of the online discussions about the statue.
That last character is U+2022. Select that line with the mouse, right-click, and select Copy to copy it to
the clipboard. Now go to a command prompt and paste it and hit Enter.
You’d expect a • to be printed, but instead you get a beep. What happened?
All secure crypto on the Internet assumes that the DNS lookup from names to IP addresses are insecure. Securing those DNS lookups therefore enables no meaningful security. DNSSEC does
make some attacks against insecure sites harder. But it doesn’t make those attacks infeasible, so sites still need to adopt secure transports like TLS. With TLS properly
configured, DNSSEC adds nothing…
