Hostname Naming Compliance
Kevin Darcy
kcd at chrysler.com
Wed Feb 25 01:38:39 UTC 2009
Eric C. Davis wrote:
> Are there plans for Bind to enforce hostname compliance according to
> RFC's or is this going to be left up to each DNS operator?
>
I'm going to take an even more radical "con" position than most of the
people in this thread.
An A record maps a DNS name into a 32-bit value.
An AAAA record maps a DNS name into a 128-bit value.
Who's to say for sure that those bit-values are "addresses"? Who's to
say for sure that those names are "hostnames"? It's just a mapping
function. It could be anything to anything. BIND shouldn't assume.
Hostname compliance checking/enforcement belongs in whatever
processes/tools/mechanisms frontend the maintenance of one's zone data.
A relatively-sophisticated frontend is assumed. after all, one can't
just let one's users throw any manner of garbage into one's zone files.
Not only would that let hostnames violate the hostname RFCs (which are
distinct from the DNS RFCs, by the way), but would open oneself up to
actual *DNS* standards violations, or violations of best practice, e.g.
mismatched forward/reverse records, "CNAME and other data", chained
CNAMEs, etc. etc. Some of those will prevent zones from loading and
break one's DNS.
The frontend is where you can put your hostname compliance
checking/enforcement, not only against Internet Standards, but also
compliance with your own local conventions and rules regarding the
composition of hostnames.
It's not BIND's job, I would be one of the ones hacking *mandatory*
compliance out of the code.
So, does that mean BIND is just dumping this job in the "operator's"
lap? Not necessarily. In addition to the commercial offerings, there's
nothing stopping anyone from developing and/or enhancing F/OSS frontends
for maintaining DNS zone data, and for operators everywhere to use the
same frontend package, configuring it for their own local rules and
conventions. A lot of folks say good things about Webmin, for instance
(although I've never used it personally). Maybe it will evolve into a
tool that will become the "dominant" one for frontending zone-data
maintenance. Or maybe some other package will step into that role. If
you're so passionate about hostname-standards-enforcement and have some
coding skills, maybe this is something you could work on.
- Kevin
More information about the bind-users
mailing list