Fast start of DNSSEC with .net and .com
At the end of last week, US company VeriSign announced the roll-out schedule for the authentication of.com and .net zones. From the 9th of December, .net domains are to be authenticated via keys that are based on the new DNSSEC (Domain Name System Security Extensions) protocol and stored in the Domain Name System (DNS). Responses that don't originate from the server that was authorised for a domain will be detected when signatures are validated.
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump