Jump to content

Be Careful What You Type.....

Guest LB

By Guest LB,
in Essential Headlines

 Share

Recommended Posts

Guest LB

Guest LB

Posted
Posted

Network administrators are fuming about changes made by domain registrar Verisign to the DNS system yesterday amid concern that the alterations could make it difficult for mail servers to reject mail from invalid domains.

Verisign yesterday added wildcard DNS records to all .com and .net domains - redirecting surfers who get lost on the Net to a search page, called Site Finder, run by the company. Those who type in non-existent addresses will also be served up Site Finder, instead of an error message.

The radical, and largely unheralded, changes were made yesterday and followed up by a post by Verisign to the NANOG mailing list. This did little beyond stating that Verisign has added a "wildcard A record to the .com and .net zones" and pointing users to a white paper that Verisign has prepared .

So, Verisign has turned domain name typos into an advertising opportunity. This is an abuse of Verisign's role, via acquired company Network Solutions, in running the root DNS servers.

And then there are the practical issues: sysadmins are fuming at the knock-on effects of the changes.

The concerns raised by Reg reader Ray Bellis, technical director of rural broadband outfit Community Internet, are typical.

"This breaks all sorts of things horribly. It makes it very difficult for mail servers to reject mail from invalid domains", Bellis said..

"Even worse, if an MX record points to an invalid host name, that host will now resolve, the SMTP connection accepted and the mail then rejected. Because the rejection is a 550 error, that mail will not get retried *ever* again. If that MX was the highest priority mail server than all mail to that domain name will bounce."

Already a backlash is building, with Net admins being urged to block Verisign's catch-all domain. This could get very messy

source: - The Register

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue. Privacy Policy

  I accept