[dns-operations] TLD(s) for private use

James Stevens James.Stevens at jrcs.co.uk
Wed Sep 6 11:52:01 UTC 2017

>> "[25]" is this link ...
>> https://web.archive.org/web/20070306080355/http://www.iso.org/iso/en/prods-services/iso3166ma/10faq/frequently-asked-questions.html#Q09
> I'm corrected (I hate those "standards" which are not even available
> online.)

What you say still stands for IETF/ICANN - the doc is only an 
authoritative statement from an ISO perspective, AFAIK.

>>> No, the "correct" (or at least recommended) procedure is to use a
>>> subdomain of one of your domains
>> The "fear" I have with this technique is that there is the
>> /potential/ for the data to get out into the public domain, as its
>> hosted in a publicly accessible TLD.
> I don't see why? "Local" or "private" domain names leak, yes, that's a
> fact, but it happens whether it is a TLD or not. At least, with a
> subdomain, the risk of the full query going to the root is lower. (Of
> course, everyone should use QNAME minimisation but it is another
> story.)

just belt & braces - "feels" safer.


More information about the dns-operations mailing list