[dns-operations] Storm on the DNS

Song Linjian (Davey) songlinjian at gmail.com
Wed Dec 16 11:03:14 UTC 2015

> 在 2015年12月16日,13:31,Paul Vixie <vixie at tisf.net> 写道:
> there is in fact a move afoot to allow long-lived tcp/53 connections, by negotiating session parameters. if this is done carefully and deliberately, then a tcp-serving dns server can be engineered to support the same volume of connections and transactions as a modern tcp-serving http server. it just can't be done without negotiation, since existing tcp-serving dns servers don't know what they can do, and it's often very little.
> http://datatracker.ietf.org/doc/draft-ietf-dnsop-edns-tcp-keepalive/ <http://datatracker.ietf.org/doc/draft-ietf-dnsop-edns-tcp-keepalive/>
> this is vital for the dns privacy work, which would like to use tls not dtls.
> noting, dns-over-http has persistency today. there's code and spec at:
> https://github.com/BII-Lab/DNSoverHTTP <https://github.com/BII-Lab/DNSoverHTTP>
FYI, draft for DNS wire-format over HTTP(s) :
https://github.com/songlinjian/DNS_HTTP/blob/master/draft-song-dns-wireformat-http-00.txt <https://github.com/songlinjian/DNS_HTTP/blob/master/draft-song-dns-wireformat-http-00.txt>

> i operate an open dns-over-http rdns server at proxy-dns.tisf.net <http://proxy-dns.tisf.net/>, fwiw.

I will release a project page soon including your server. And also call for participants (server) and users (free download).

> vixie
> _______________________________________________
> dns-operations mailing list
> dns-operations at lists.dns-oarc.net <mailto:dns-operations at lists.dns-oarc.net>
> https://lists.dns-oarc.net/mailman/listinfo/dns-operations <https://lists.dns-oarc.net/mailman/listinfo/dns-operations>
> dns-jobs mailing list
> https://lists.dns-oarc.net/mailman/listinfo/dns-jobs <https://lists.dns-oarc.net/mailman/listinfo/dns-jobs>
Davey Song(宋林健)
songlinjian at gmail.com

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.dns-oarc.net/pipermail/dns-operations/attachments/20151216/dff75ea2/attachment.html>

More information about the dns-operations mailing list