nanog mailing list archives

Previous By Date Next
Previous By Thread Next

Re: VeriSign's rapid DNS updates in .com/.net

From: "Christian Kuhtz" <christian.kuhtz () BELLSOUTH COM>
Date: Fri, 23 Jul 2004 10:05:21 -0400




On 7/23/04 5:29 AM, "Richard Cox" <richard () mandarin com> wrote:



On Thu, 22 Jul 2004 15:27:37 -1000 Randy Bush <randy () psg com> wrote:

| all they need to do is register foo.bar with delegation to their
| dns servers, and change a third level domain name at will.

Er, no.  They have of course tried that already!

By registering foo.bar with delegation to THEIR dns servers gives full
identification of THEIR dns servers, and the host or upstream of those
servers can (and often does) start invoking their acceptable use policy.
If not, then all the considerations that Paul V. recently cited about
neighbours who allow bad things on their network, start to kick in.

The scenario I have outlined - now well established, and the mechanism
understood - allows the malfeasants to operate on the 'net with zero
traceability of their identity or location, based on everything they do
being able to be done through zombied Windows PCs or open(ed) proxies.


The distribution of spam is only half of the economy at work here.  Spam
doesn't occur in a vacuum.  The other half is the "site(s)" profiting from
the spam.  


*****
The information transmitted is intended only for the person or entity to which it is addressed and may contain 
confidential, proprietary, and/or privileged material.  Any review, retransmission, dissemination or other use of, or 
taking of any action in reliance upon, this information by persons or entities other than the intended recipient is 
prohibited.  If you received this in error, please contact the sender and delete the material from all computers. 113
Previous By Date Next
Previous By Thread Next

Current thread: