Interesting new dns failures

• Previous message (by thread): Interesting new dns failures
• Next message (by thread): Interesting new dns failures
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

>> All the same, it would seem to be an easy and cheap abuse to address,
>> at the gtlds.  Why are these obvious trojans are being propagated by
>> the root servers anyhow?
>
> the root servers are responsible how exactly for the fast-flux issues?
> Also, there might be some legittimate business that uses something like
> the FF techniques... but, uhm... how are the root servers involved again?

Nobody's saying that the root servers are responsible, only that they
are the point at which these domains would have to be squelched. In
theory registrars could do this, but some would have a financial
incentive not to. Also I don't believe registrars can update the roots
quickly enough to be effective (correct me if I'm wrong).

Given the obvious differences between legitimate fast flux and the
pattern/domains in question it would seem to be a no-brainer,
technically at least.

-- 
Roger Marquis
Roble Systems Consulting
http://www.roble.com/

• Previous message (by thread): Interesting new dns failures
• Next message (by thread): Interesting new dns failures
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]