[91256] in North American Network Operators' Group
Re: Sitefinder II, the sequel...
daemon@ATHENA.MIT.EDU (David Ulevitch)
Tue Jul 11 04:23:35 2006
In-Reply-To: <20060711070922.GA6070@nic.fr>
Cc: Steve Sobol <sjsobol@JustThe.net>,
Joseph Jackson <JJackson@aninetworks.com>, nanog@nanog.org
From: David Ulevitch <davidu@everydns.net>
Date: Tue, 11 Jul 2006 01:23:04 -0700
To: Stephane Bortzmeyer <bortzmeyer@nic.fr>,
"Steven M. Bellovin" <smb@cs.columbia.edu>
Errors-To: owner-nanog@merit.edu
On Jul 11, 2006, at 12:09 AM, Stephane Bortzmeyer wrote:
>
> On Mon, Jul 10, 2006 at 11:19:51PM -0700,
> Steve Sobol <sjsobol@JustThe.net> wrote
> a message of 16 lines which said:
>
>> There's a big difference, of course, between INTENTIONALLY pointing
>> your computers at DNS servers that do this kind of thing, and having
>> it done for you without your knowledge and/or consent.
>
> As Steven Bellovin pointed out, most OpenDNS users will not choose it:
> it will be choosen for them by their corporate IT department or by
> their Internet access provider.
Our preference system is designed around CIDR and the most specific
prefix will win a lookup meaning a /32 settings are preferred over
that of a /24.
A corporate network can have a policy changing that (aka, you are
fired), but an ISP can't. The policies of IT departments and ISPs are
not remotely comparable. This is a deliberate design choice.
As usual, ymmv.
-david
