Wildcard DNS (pros and cons)
Edward Buck
ed at bashware_REMOVEME_.net
Mon Dec 13 21:08:23 UTC 2004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Jonathan de Boyne Pollard wrote:
| EB> IMO, dns entries should not be ambiguous.
|
| There's nothing inherently *ambiguous* about wildcards or the resource
| record sets that are synthesized from them. Wildcards are just one form
| of server-side aliases. (They alias together all of the
| not-otherwise-explicitly specified labels.) That doesn't cause
| ambiguity, per se.
I agree that there's nothing inherently ambiguous about wildcard
entries. But when the wildcard entry is abused and it becomes unclear
whether the subdomain in question is valid or not, intended or not, then
there is ambiguity. I pick on wildcards here but it's not just about
dns wildcards. The smtp protocol is full of ambiguity, precipitating
the need for sender verification protocols like SPF or DomainKeys.
If spammers do have an affinity for wildcarded domains, then I suspect
it will drive people to stop using wildcards whether they are convenient
or not. Nobody wants to invite spammers to send more traffic to their
network.
Ed
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFBvgTG+8K5zYeYuXsRArD7AJ9F5tPG4rDxSrn1I7j3FQceR+H81ACcD891
jL6cDJtrSFjb11JK9VcxhYw=
=mIEk
-----END PGP SIGNATURE-----
More information about the bind-users
mailing list