discuss AT lists.opennicproject.org
Subject: Discuss mailing list
List archive
- From: Brian Koontz <brian AT opennicproject.org>
- To: discuss AT lists.opennicproject.org
- Subject: Re: [opennic-discuss] D.N.S. accounts?
- Date: Tue, 3 Apr 2012 15:46:02 -0500
Peter--
Actually, this has been discussed, and I know of at least one T2
server that is "subscription only." My T2's require occasional hits
on OpenNIC domains before ICANN domains are resolved.
The vast majority of traffic handled by most T2's is for
ICANN-namespace domains. It has never been the intent of OpenNIC to
compete with the likes of Google and OpenDNS as public nameservers
simply for the sake of being a public nameserver. And we (the admins)
have had extensive discussions over how to rank T2's based upon
"trust."
With LDAP in place, I can see a central registry being set up that
would allow T2 operators to optionally allow access only to registered
IP addresses. I don't know how feasible this would be, so I'll have
to let the LDAP experts chime in on this one.
--Brian
On Tue, Apr 03, 2012 at 01:58:54PM +0100, Peter Green wrote:
> Hi all,
>
> I'm wondering about the pitfalls of open D.N.S. servers and D.N.S. security
> generally.
> Would it make sense, and be possible to offer (free) accounts to people
> that apply for this service?
>
> Maybe we need open D.N.S. servers, but is there a place for account holder
> only servers?
>
> People on the move and with dynamic addresses wouldn't be so easy to serve
> but the home desktop and routers on static I.P.s might like the added
> security.
>
> If this was done, when people sign up for an account, they can subscribe to
> a newsletter or mailing list keeping them up to date with any maintenance
> or changes to the server.
>
> If account holder only recursion is done, and the server is more secure it
> might make the service more desirable to use?
>
> I'm guessing there's a simple way to restrict I.P. addresses in the BIND
> config file to allow account holders to access the D.N.S. server?
>
> Sorry if this has been covered before.
>
> Peter
>
> Wanged from my Kaiser by a mischievous pixie!
--
OpenNIC (the sequel) co-founder and wikimaster
IRC: Freenode.net channel #opennic
- [opennic-discuss] D.N.S. accounts?, Peter Green, 04/03/2012
- Re: [opennic-discuss] D.N.S. accounts?, Brian Koontz, 04/03/2012
- Re: [opennic-discuss] D.N.S. accounts?, Maximi89, 04/03/2012
- Re: [opennic-discuss] D.N.S. accounts?, Travis McCrea, 04/04/2012
- Re: [opennic-discuss] D.N.S. accounts?, Julian DeMarchi, 04/04/2012
- Re: [opennic-discuss] D.N.S. accounts?, Travis McCrea, 04/04/2012
- Re: [opennic-discuss] D.N.S. accounts?, Quinn Wood, 04/03/2012
- Re: [opennic-discuss] D.N.S. accounts?, Brian Koontz, 04/03/2012
- Re: [opennic-discuss] D.N.S. accounts?, Quinn Wood, 04/03/2012
- Re: [opennic-discuss] D.N.S. accounts?, me, 04/03/2012
- Re: [opennic-discuss] D.N.S. accounts?, Brian Koontz, 04/03/2012
- Re: Re: [opennic-discuss] D.N.S. accounts?, woodq11, 04/04/2012
- Re: [opennic-discuss] D.N.S. accounts?, Alex Hanselka, 04/04/2012
- Re: [opennic-discuss] D.N.S. accounts?, Brian Koontz, 04/03/2012
- Re: [opennic-discuss] D.N.S. accounts?, me, 04/03/2012
- Re: [opennic-discuss] D.N.S. accounts?, Quinn Wood, 04/03/2012
- Re: [opennic-discuss] D.N.S. accounts?, Brian Koontz, 04/03/2012
- Re: [opennic-discuss] D.N.S. accounts?, Maximi89, 04/03/2012
- Re: [opennic-discuss] D.N.S. accounts?, Brian Koontz, 04/03/2012
Archive powered by MHonArc 2.6.19.