.si hostmaster wrote:
> Hello,
>
> it seems bluehost.com does some weird things with several TLDs. Their
> nameservers return authoritative answer for SOA queries for some TLDs:
[...]
> Does anyone know what is the purpouse for doing this?
This is a common DNS anti-pattern used by low-end web hosters that also
do DNS hosting that exploits the fact that the DNS protocol (pre-DNSSEC)
allows certain serious misconfigurations, such as parent and child zones
disagreeing on the location of a zone cut. Basically, they have a
single zone with wildcards like:
;; ANSWER SECTION:
*.com. 60 IN A 74.220.199.6
and
;; ANSWER SECTION:
*.uk. 60 IN A 74.220.199.6
etc.
(I'm not sure why they don't just wildcard all of "*." and be done with
it.)
This lets them turn up tons of web hosting customers without having to
configure thousands of individual zones on their nameservers. They just
tell the prospective customer to point their NS records at their
nameservers, and the web hoster doesn't have to provision anything in
order to make the customer's domain resolve.
--
Robert Edmonds
_______________________________________________
dns-operations mailing list
[email protected]
https://lists.dns-oarc.net/mailman/listinfo/dns-operations
dns-jobs mailing list
https://lists.dns-oarc.net/mailman/listinfo/dns-jobs
