drc at virtualized.org
Wed Sep 17 14:32:38 UTC 2014
On Sep 17, 2014, at 7:17 AM, Jens Link <lists at quux.de> wrote:
> Owen DeLong <owen at delong.com> writes:
>> On Sep 16, 2014, at 8:55 AM, Majdi S. Abbas <msa at latt.net> wrote:
>>> su is not available.
>> I think it is now, since the break up of the Soviet Union.
No it is not.
> A friend told me that .su domains are quite common in windows
> environments after the admins discovered that .local is not a good
> choice. ;-)
That would be an *exceptionally* bad idea. If queries to those domains leaked out of the local environment (which, of course, _never_ happens), they could be resolved simply by purchasing the .SU domain and then setting up name servers with a wildcard to return an address for a honeypot. The bad guys could then just sit and wait (and then profit). This is a form of ‘name collision’ which is all the rage these days (see https://www.icann.org/resources/pages/name-collision-2013-12-06-en).
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 496 bytes
Desc: Message signed with OpenPGP using GPGMail
More information about the NANOG