nanog mailing list archives

Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking

From: Måns Nilsson <mansaxel () besserwisser org>
Date: Thu, 28 Feb 2019 10:04:19 +0100

Subject: Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Date: Wed, Feb 27, 2019 at 
07:59:49PM -0800 Quoting Seth Mattinen (sethm () rollernet us):

On 2/27/19 7:02 PM, bzs () theworld com wrote:

I have proposed many times to just move domain WHOIS data into a new
RRTYPE and let whoever owns the domain put in that whatever they want,
including (and perhaps most usefully for many) just a URL for further
detail.



We kind of have that with RP records. But does anyone do it?


I do, as preserver of strange RRtypes people try to deprecate. 

dig @primary.se besserwisser.org AXFR | awk '\
        /^;/ { 
                next; 
                }; 
        /besserwisser.org/ { 
                types[$4]++; 
        }; 
        END { 
                for ( RRTYPE in types ) { 
                        count++; 
                        printf "%s\t%d\n", 
                                RRTYPE, 
                                types[RRTYPE]; 
                        }; 
                        printf "Total:\t%d rrtypes in zone\n", 
                                count; 
};'

NS      5
AAAA    21
DNSKEY  3
SPF     1
A       28
NSEC    62
AFSDB   3
RP      1
MX      2
CNAME   9
SOA     2
RRSIG   147
TXT     6
SSHFP   14
SRV     20
DS      4
Total:  16 rrtypes in zone

(Yes, there's a bug there, but the end figure is correct.) 

-- 
Måns Nilsson     primary/secondary/besserwisser/machina
MN-1334-RIPE           SA0XLR            +46 705 989668
TONY RANDALL!  Is YOUR life a PATIO of FUN??

Attachment: signature.asc
Description:

Current thread:

Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking, (continued)
- - - Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking John Levine (Feb 27)
    - Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Måns Nilsson (Feb 27)
    - Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Mark Andrews (Feb 27)
    - Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking John R. Levine (Feb 27)
    - Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Mark Andrews (Feb 27)
    - Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking John R. Levine (Feb 27)
    - Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Mark Andrews (Feb 27)
    - Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking bzs (Feb 27)
    - Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Seth Mattinen (Feb 27)
    - Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Mike Meredith (Feb 28)
    - Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Måns Nilsson (Feb 28)
    - Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Bjørn Mork (Feb 28)
    - Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Mike Meredith (Feb 28)
    - Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Måns Nilsson (Feb 28)
    - Re: DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Töma Gavrichenkov (Feb 27)
    - RE: A Deep Dive on the Recent Widespread DNS Hijacking Jacques Latour (Feb 26)
    - Re: A Deep Dive on the Recent Widespread DNS Hijacking Bill Woodcock (Feb 26)
    - Re: A Deep Dive on the Recent Widespread DNS Hijacking Mark Andrews (Feb 26)
    - Re: A Deep Dive on the Recent Widespread DNS Hijacking Bill Woodcock (Feb 28)
  - Re: A Deep Dive on the Recent Widespread DNS Hijacking Bill Woodcock (Feb 24)
    - Re: A Deep Dive on the Recent Widespread DNS Hijacking Mark Andrews (Feb 24)

(Thread continues...)