[22268] in North American Network Operators' Group
Re: InterNIC "whois server " broke?
daemon@ATHENA.MIT.EDU (Michael P. Lyle)
Fri Dec 18 21:33:07 1998
Date: Fri, 18 Dec 1998 18:19:18 -0800
From: "Michael P. Lyle" <icee@phoenix.lyle.org>
To: Alex Bligh <amb@gxn.net>, nanog@merit.edu
In-Reply-To: <199812190122.BAA11076@diamond.xara.net>; from Alex Bligh on Sat, Dec 19, 1998 at 01:22:07AM +0000
On Sat, Dec 19, 1998 at 01:22:07AM +0000, Alex Bligh wrote:
> Perhaps this is dumb, but how about authentication by ensuring the
> TCP connection from the whois comes from the server in question. IE
> you can whois FOO-HST to see which domains are served by FOO-HST
> only from FOO-HST. Mildly inconvenient, but stops random people pulling
> off everyones lists. I can't currently think of an OS that supports
> DNS servers but not whois.
The problem with this, is if there is some sort of network problem or you
are trying to determine what domains are still looking at an old nameserver
you took down.
I don't see why authentication is such a necessity-- why is it a secret
what domains a given nameserver serves? It would be easy enough to pull
the information down by exhaustive search.
Mike
--
Michael P. Lyle
Security Architect
Exodus Communications, Inc.
