Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 18 Dec 2008 07:04:48 +1000
From:      Da Rock <rock_on_the_web@comcen.com.au>
To:        freebsd-questions@freebsd.org
Subject:   Re: Publishing information via DNS
Message-ID:  <1229547890.1266.49.camel@laptop2.herveybayaustralia.com.au>
In-Reply-To: <20081217190708.P2011@wojtek.tensor.gdynia.pl>
References:  <26face530812170701n4160dba2ve183d8860b6d4a69@mail.gmail.com> <49491705.5060108@pixelhammer.com> <20081217190708.P2011@wojtek.tensor.gdynia.pl>

next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 2008-12-17 at 19:07 +0100, Wojciech Puchar wrote:
> > Someone needs to invent and promote a TextualDatagramPublicationProtocol or 
> > TDPP because DNS has been abused for publishing non DNS data for too long. 
> > Continuing to use DNS for things it was never intended to do will only cloud 
> > the issue and delay implementation when the internet decides to take DNS 
> > security seriously.
> >
> where do you see security issue of that? except that someone voluntarily 
> publish his/her private data this way - but it won't be DNS security 
> problem but his/her problem

I'm not pretending to be any kind of expert in this, but as with any
software not used as it should it does get cloudy. Security in DNS is
already an issue with care to be taken in who can see what and how it
gets updated or what not- particularly with slave DNS' involved. I can't
say what security issues it would raise, but I wouldn't be implementing
anything like that myself for the same reasons. I'd stick to hostnames
and maybe services which it was designed for.




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1229547890.1266.49.camel>