Interesting new dns failures

Chris L. Morrow christopher.morrow at verizonbusiness.com
Fri May 25 20:31:59 UTC 2007



On Fri, 25 May 2007 Valdis.Kletnieks at vt.edu wrote:

> On Fri, 25 May 2007 12:08:44 PDT, Scott Weeks said:
> > --------------johnl at iecc.com wrote:--------------------
> > > the bits of governments that deal with online crime, spam, etc.,
> > > I can report that pretty much all of the countries that matter
> > > realize there's a problem, and a lot of them have passed or will
> > > pass laws whether we like it or not.  So it behooves us to engage
> > > them and help them pass better rather than worse laws.
> > ----------------------------------------------------------
>
> > Which countries are "pretty much all of the countries that matter"?  Do you
> > have a list or is this just 'something you're sure of'?
>
> A lot of the more nefarious uses of the DNS are there precisely because the
> actual country *doesn't* matter, and as a result the TLD is run by somebody
> who is asleep at the wheel or worse.  For instance, there appears to be a
> '*.cm' wildcard in place, and several "flag of convenience" TLDs with a high

cameroon outsourced their dns infrastructure management to someone, that
contract includes a "we can answer X for all queries that would return
NXDOMAIN'" ... that's not 'asleep at the wheel' so much as 'not a good
idea' (except for click revenue I suppose). This is different from .cx? or
.tv  how?

> ratio of users that aren't actually associated with the country...



More information about the NANOG mailing list