RE: pharming.. dns cache insertion...

This is a discussion on RE: pharming.. dns cache insertion... within the Bind Users forums, part of the DNS and Related Forums category; brad, doh! hence the question!!!!! i got to thinking about this after your 1st email... my basic question was, is ...


Go Back   Usenet Forums > DNS and Related Forums > Bind Users

Reload this Page RE: pharming.. dns cache insertion...

FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

 

LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 04-08-2005
bruce
 
Posts: n/a
Default RE: pharming.. dns cache insertion...
brad,

doh! hence the question!!!!!

i got to thinking about this after your 1st email... my basic question was,
is there a list/compilation of valid IP addresses, taking into account that
the list is completely dynamic.. has anyone tried to compile such a list?
how the hell would you even do it?

my understanding of DNS, and the ancillary issues is quite limited, as i've
never really had to immerse myself into it...

but i'm curious...

thanks for your help/replies...

bruce


-----Original Message-----
From: Brad Knowles [mailto:brad@stop.mail-abuse.org]
Sent: Friday, April 08, 2005 1:46 PM
To: bedouglas@earthlink.net
Cc: 'Brad Knowles'; comp-protocols-dns-bind@isc.org
Subject: RE: pharming.. dns cache insertion...


At 12:37 PM -0700 2005-04-08, bruce wrote:

> i know that there are, i believe 7 or 13 master/root dns servers across
the
> net.

Not individual machines, no. Not anymore. Thirteen root
nameserver IP addresses, but some are shared by multiple machines,
and some are shared by dozens of machines. They are put behind
load-balancing switches, the IP addresses are distributed via
anycast, and a whole host of other high-availability/load-balancing
features are used.

> is there a reasonable 'list'/compilation of all dns ip addresses?

You mean all nameservers around the entire world? No. You'd
have to get a copy of every zone in existence and look at all the
advertised NS records, and even that would only tell you the ones
that are advertised -- plenty of people run "stealth" secondary
servers that are not advertised anywhere. And then there are all the
caching-only servers which are not authoritative for anything.

Even if you could get a copy of all domains around the world, by
the time you went through the list you'd have to go through all over
again, because the list is constantly changing.

>
is
> this list available to the public? just talking about the external/public
> ones, not the ones behind some nat router (192.168.x.x)

I don't think you begin to understand the size and complexity of
the question.

--
Brad Knowles, <brad@stop.mail-abuse.org>

"Those who would give up essential Liberty, to purchase a little
temporary Safety, deserve neither Liberty nor Safety."

-- Benjamin Franklin (1706-1790), reply of the Pennsylvania
Assembly to the Governor, November 11, 1755

SAGE member since 1995. See <http://www.sage.org/> for more info.


Reply With Quote
Reply

« Previous Thread | Next Thread »

Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are Off
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT +1. The time now is 10:28 AM.

Contact Us - Usenet Forums - Archive - Top

Powered by vBulletin® Version 3.6.8
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.0.0