From owner-freebsd-net@freebsd.org Thu Mar 22 17:44:10 2018 Return-Path: Delivered-To: freebsd-net@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 4E5AEF5AB87 for ; Thu, 22 Mar 2018 17:44:10 +0000 (UTC) (envelope-from rfg@tristatelogic.com) Received: from outgoing.tristatelogic.com (segfault.tristatelogic.com [69.62.255.118]) by mx1.freebsd.org (Postfix) with ESMTP id D85A88185B for ; Thu, 22 Mar 2018 17:44:09 +0000 (UTC) (envelope-from rfg@tristatelogic.com) Received: from segfault-nmh-helo.tristatelogic.com (localhost [127.0.0.1]) by segfault.tristatelogic.com (Postfix) with ESMTP id 165673AE87 for ; Thu, 22 Mar 2018 10:44:09 -0700 (PDT) From: "Ronald F. Guilmette" To: FreeBSD Net Subject: Re: Same host or different? How can you tell "over the wire"? In-Reply-To: <4ce048ad-873e-795e-aae0-8d795d9bb85c@kicp.uchicago.edu> Date: Thu, 22 Mar 2018 10:44:08 -0700 Message-ID: <9859.1521740648@segfault.tristatelogic.com> X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.25 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 Mar 2018 17:44:10 -0000 In message <4ce048ad-873e-795e-aae0-8d795d9bb85c@kicp.uchicago.edu>, Valeri Galtsev wrote: >If A and A' do resolve beyond their SOA for clients outside of their >domain. That was vulnerable for abuse, and hardly anybody does that >these days. Am I missing something? As I understand it, sadly, there are still a couple of zillion open recursive resolvers out there. I would anticipate that Bad Actors are neither more likely nor less likely than the general poulation to put such an abomination online.