Date: Thu, 18 Dec 2008 07:04:48 +1000 From: Da Rock <rock_on_the_web@comcen.com.au> To: freebsd-questions@freebsd.org Subject: Re: Publishing information via DNS Message-ID: <1229547890.1266.49.camel@laptop2.herveybayaustralia.com.au> In-Reply-To: <20081217190708.P2011@wojtek.tensor.gdynia.pl> References: <26face530812170701n4160dba2ve183d8860b6d4a69@mail.gmail.com> <49491705.5060108@pixelhammer.com> <20081217190708.P2011@wojtek.tensor.gdynia.pl>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 2008-12-17 at 19:07 +0100, Wojciech Puchar wrote: > > Someone needs to invent and promote a TextualDatagramPublicationProtocol or > > TDPP because DNS has been abused for publishing non DNS data for too long. > > Continuing to use DNS for things it was never intended to do will only cloud > > the issue and delay implementation when the internet decides to take DNS > > security seriously. > > > where do you see security issue of that? except that someone voluntarily > publish his/her private data this way - but it won't be DNS security > problem but his/her problem I'm not pretending to be any kind of expert in this, but as with any software not used as it should it does get cloudy. Security in DNS is already an issue with care to be taken in who can see what and how it gets updated or what not- particularly with slave DNS' involved. I can't say what security issues it would raise, but I wouldn't be implementing anything like that myself for the same reasons. I'd stick to hostnames and maybe services which it was designed for.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1229547890.1266.49.camel>