Full Disclosure mailing list archives

Re: [Full-Disclosure] Full-disclosure digest- good reverse dns server

From: "M. Osten" <lists () bleepyou com>
Date: 03 Jul 2003 10:33:40 -0500

On Thu, 2003-07-03 at 04:43, Philip Stortz wrote:

does any one know of a free reverse dns server that's good?  the dns servers my isp provides frequently fail to 
identify the owners

of ip# in my firewall log.  while i do sometimes manually look them up at arin.net etc., i'd really like to find a 
reverse dns server

 to identify all those ip#, many of which are incursion attempts by dsl or dialup or cable modem users on other 
isp's, and many

 of which are advertising or tracking sites (which i aggressively block for privacy and because the ad servers tend 
to be overloaded

and greatly slow down surfing, especially since i'm limited to dialup at present).


Chances are that if your ISP's dns is not giving you a reverse for IP's,
there isn't one, or your ISP's DNS is severely borked.

along the same lines, i'm considering getting a cable modem in the future, but of course there are security issues, 
are there services set up such that i could have ssl or vpn contact 
to a remote machine and they would reroute it to the actual destination so that my communications would be secure on 
the cable line 
(i.e. encrypted) and then routed on the backbone unencrypted to sites that don't use encryption or parts of sites that 
don't?


Why?  Are you suggesting that your local cable network is more insecure
than the Internet at large?  You have to remember that once packets
leave your ISP's gateway, they may travel through many untrusted
networks before reaching final destination.  Encryption to your cable
providers gateway would gain you nothing.

A more sane approach would be to use Freeswan's "Opportunistic
Encryption" which creates an IPSEC tunnel to other public machines that
support OE.  This would give you encryption to a small sub-section of
the Internet.

-- 
--------------------------
M. Osten
www.bleepyou.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

[Full-Disclosure] Full-disclosure digest- good reverse dns server Philip Stortz (Jul 03)
- Re: [Full-Disclosure] Full-disclosure digest- good reverse dns server M. Osten (Jul 03)
- Re: [Full-Disclosure] Full-disclosure digest- good reverse dns server Steffen Kluge (Jul 03)