in the current dns terminology rfc, it editorializes and is inaccurate
by understatement and overstatement concerning the "passive dns" term. i
suggest the following edits, should you decide to retain this text
rather than copy from the COF i-d or from florian's original work:
Passive DNS: A mechanism to collect large amounts of DNS data by
storing DNS responses from servers. Some of these systems also
collect the DNS queries associated with the responses; this can
raise privacy issues. Passive DNS databases can be used to answer
historical questions about DNS zones such as which records were
available for them at what times in the past. Passive DNS
databases allow searching of the stored records on keys other than
just the name, such as "find all names which have A records of a
particular value".
s/large amounts of//
s/responses/transactions/
s/servers/name servers/
s/; this can raise privacy issues/; done correctly, this raises no
privacy issues/
s/records/answers/
s/available for them/witnessed/
s/the name/the name and type/
--
P Vixie
_______________________________________________
DNSOP mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dnsop
