[dns-operations] chrome's 10 character QNAMEs to detect NXDOMAIN rewriting

Vernon Schryver vjs at rhyolite.com
Tue Nov 26 20:22:34 UTC 2013

> From: Rubens Kuhl <rubensk at nic.br>

> Yeap, in the source code. Some discussions on those:
> http://productforums.google.com/forum/#!topic/chrome/dQ92XhrDjfk
> https://code.google.com/p/chromium/issues/detail?id=47262
> http://serverfault.com/questions/235307/unusual-head-requests-to-nonsense-urls-from-chrome
> http://www.forensicswiki.org/wiki/Google_Chrome#Start-up_DNS_queries

If those diagnoses are correct that the probes are for subdomains of
the local hosts's domain, then I don't understand grounds to fault
Google.  The probes should cause no additional traffic to the roots,
gTLD servers, or anything outside the user's ISP's network.  Whether
the local system thinks it is in something bogus like the "computer."
domain or something reasonable, the Google Chrome probes should hit
entries in the ISP's recursive servers's caches.

Vernon Schryver    vjs at rhyolite.com

More information about the dns-operations mailing list