[dns-operations] New U.S. Senate Bill re DNS Blocking

Livingood, Jason Jason_Livingood at cable.comcast.com
Wed Sep 22 01:05:13 UTC 2010

On 9/21/10 7:45 PM, "Rick Jones" <rick.jones2 at hp.com> wrote:

>Ray Van Dolson wrote:
>> On Tue, Sep 21, 2010 at 03:12:10PM -0700, Livingood, Jason wrote:
>>>Not sure if many folks have yet taken notice of this:
>>>Included is:
>>>Ša service providerŠor other operator of a domain name system server
>>>shall take reasonable steps that will prevent a domain name from
>>>resolving to that domain name¹s Internet protocol address;
>> What the heck does that even mean? :)
>I'll take a guess - 'If we have decided that the folks using a domain
>name are 
>being "naughty" (per our definition of naughty) then anyone operating a
>server must implement a means by which folks trying to resolve that name
>to an 
>IP address won't be able to do so.'
>IE they think it will (help) block access to the naughtiness.

And a key is that this is not restricted to registries, registrars, or
authoritative DNS servers.  This is also meant to affect operators of all
U.S.-based recursive resolvers, whether in an ISP network, a DNS ASP, a
company network, academic network, etc.  One concern I have as a result of
it (among many) is what this would mean for a DNS server operator once
they have implemented DNSSEC validation.


More information about the dns-operations mailing list