Charter DNS servers returning malware filtered IP addresses
niels=nanog at bakker.net
niels=nanog at bakker.net
Fri Oct 27 23:22:44 UTC 2023
* Owen DeLong [Sat 28 Oct 2023, 01:00 CEST]:
>If it’s such a reasonable default, why don’t any of the public
>resolvers (e.g. 1.1.1.1, 8.8.8.8, 9.9.9.9, etc.) do so?
It's generally a service that's offered for money. Quad9 definitely
offer it: https://www.quad9.net/service/threat-blocking
>DNS isn’t the right place to attack this, IMHO.
Why not (apart from a purity argument), and where should it happen
instead? As others pointed out, network operators have a vested
interest in protecting their customers from becoming victims to
malware.
-- Niels.
More information about the NANOG
mailing list