The recent DNS bugs sent me reading the cr.yp.to site for old stories, long forgotten. djbdns is one of the DNS server softwares that was immune to this problem from the start.
- a Usenet posting of 2001 comparing the attack space of crypto-secure DNS request vs the alternatives;
- a page about DNS forgery;
- a blurb about the recent attacks;
- (not in the cr.yp.to site but still...) djb credited in original post about this latest exploit (search for DJB).
I still receive a diff of changes to the cr.yp.to site, almost 5 years running now, I wonder if anybody has an archive of them. It would be interesting to assemble all of those diffs into a repository to track back the changes.