Interesting new dns failures
Chris L. Morrow
christopher.morrow at verizonbusiness.com
Fri May 25 20:31:59 UTC 2007
On Fri, 25 May 2007 Valdis.Kletnieks at vt.edu wrote:
> On Fri, 25 May 2007 12:08:44 PDT, Scott Weeks said:
> > --------------johnl at iecc.com wrote:--------------------
> > > the bits of governments that deal with online crime, spam, etc.,
> > > I can report that pretty much all of the countries that matter
> > > realize there's a problem, and a lot of them have passed or will
> > > pass laws whether we like it or not. So it behooves us to engage
> > > them and help them pass better rather than worse laws.
> > ----------------------------------------------------------
>
> > Which countries are "pretty much all of the countries that matter"? Do you
> > have a list or is this just 'something you're sure of'?
>
> A lot of the more nefarious uses of the DNS are there precisely because the
> actual country *doesn't* matter, and as a result the TLD is run by somebody
> who is asleep at the wheel or worse. For instance, there appears to be a
> '*.cm' wildcard in place, and several "flag of convenience" TLDs with a high
cameroon outsourced their dns infrastructure management to someone, that
contract includes a "we can answer X for all queries that would return
NXDOMAIN'" ... that's not 'asleep at the wheel' so much as 'not a good
idea' (except for click revenue I suppose). This is different from .cx? or
.tv how?
> ratio of users that aren't actually associated with the country...
More information about the NANOG
mailing list