[132993] in North American Network Operators' Group
Re: wikileaks dns (was Re: Blocking International DNS)
daemon@ATHENA.MIT.EDU (Dan White)
Fri Dec 3 09:28:05 2010
Date: Fri, 3 Dec 2010 08:27:57 -0600
From: Dan White <dwhite@olp.net>
To: Ken Chase <ken@sizone.org>
In-Reply-To: <20101203055229.GB30565@sizone.org>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On 03/12/10 00:52 -0500, Ken Chase wrote:
>On Fri, Dec 03, 2010 at 02:26:35PM +0900, Randy Bush said:
> >so, if the site to which a dns entry points suffers a ddos, everydns
> >will no longer serve the domain. i hope they apply this policy even
> >handedly to all sufferers of ddos.
> >
> >if not, as a registrar, i guess i can no longer accept registrations
> >where everydns is the ns delegatee.
>
>Let us know if they deviate from this isometric application of policy. I'll be
>happy to encourage people not to use them.
>
>Anyone have records of what wikileaks (RR, i assume) A record was? I should
>have queried my favourite open rDNS servers before they expired, assuming that
>the TTL was long enough (or modified to be long by a local cache policy).
>
>Quick, someone power up their hibernated laptop with the network unplugged and
>ping wikileaks (assuming you looked at it recently before hiberation, before
>it was pulled... :) Not sure that works in any windows (or other OS's for that
>matter) however.
Their A records on Sunday were:
#46.51.186.222 wikileaks.org
#46.151.171.90 wikileaks.org
--
Dan White
