What DNS Is Not

sthaug at nethelp.no sthaug at nethelp.no
Tue Nov 10 07:30:45 CST 2009


> > When the conficker worms phones home to one of the 50,000 potential 
> > domains names it computes each day, there are a lot of IT folks out 
> > there that wish their local resolver would simply reject those DNS 
> > requests so that infected machines in their network fail to phone
> > home.
> > 
> > To use your language, I don't understand how or why this could
> > possibly be controversial.  --  Apparently it is.
> 
> In which case, make your own nameserver authoritative for those
> domains; do not foist your own wishes on other people.

Since people need to *explicitly* choose using the OpenDNS servers, I
can hardly see how anybody's wishes are foisted on these people.

If you don't like the answers you get from this (free) service, you
can of course choose to use a different service - for instance your
ISP's name servers.

(I may or may not agree with what OpenDNS does - that is completely
irrelevant in this case.)

Steinar Haug, Nethelp consulting, sthaug at nethelp.no




More information about the NANOG mailing list