Re: Sites that points their A Record to localhost
On 01/15, Bill Owens wrote: On Tue, Jan 14, 2014 at 07:55:44PM -0500, Kevin Darcy wrote: Loopback is anti-social; an apparent attempt to make the client waste resources connecting to itself. In legal terms, one might call this an attractive nuisance. You're quite right; that's why I have MX records for decades-old dead hostnames pointing to loopback, because the only queries for those names are from spammers and I'd very much like them to waste their time. But that's about the only reason I can think of to use it. . . i point the mx records for old/dead/unused host/domain names at a specific postfix instance that logs attempts to deliver mail to them. the ip address of the sender then gets added to our blacklists. /chl pgpqJmRS87Q_6.pgp Description: PGP signature ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Sites that points their A Record to localhost
On Tue, Jan 14, 2014 at 07:55:44PM -0500, Kevin Darcy wrote: If the domain owner *really* feels that they have to publish *some* address record for a particular name, but there is no available service at that name, then the null or unspecified address (IPv4 = 0.0.0.0, IPv6 = ::0) is the appropriate value to put there. Loopback is anti-social; an apparent attempt to make the client waste resources connecting to itself. In legal terms, one might call this an attractive nuisance. You're quite right; that's why I have MX records for decades-old dead hostnames pointing to loopback, because the only queries for those names are from spammers and I'd very much like them to waste their time. But that's about the only reason I can think of to use it. . . Bill. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Sites that points their A Record to localhost
On 2014-01-12 10:04, Chris Thompson wrote: On Jan 11 2014, Joseph S D Yao wrote: [...snip...] (2) There is no requirement that a domain name refer to the Web site for that domain. I personally don't like that (for no special reason), and neither apparently does the owner of this domain, who forces people to go to the trouble of typing in www.p3net.net to get to his or her Web site. That would be more plausible if www.p3net.net actually resolved to something, rather than giving NXDOMAIN ... How interesting. From here I see (and saw before I posted): ;; ANSWER SECTION: www.p3net.net. 0 IN A 199.101.28.20 Joe Yao ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Sites that points their A Record to localhost
On Jan 14 2014, Joseph S D Yao wrote: On 2014-01-12 10:04, Chris Thompson wrote: [...] That would be more plausible if www.p3net.net actually resolved to something, rather than giving NXDOMAIN ... How interesting. From here I see (and saw before I posted): ;; ANSWER SECTION: www.p3net.net. 0 IN A 199.101.28.20 I continue to get NXDOMAIN for www.p3net.net from both of dns1.namesecure.com [205.178.190.56] dns2.namesecure.com [206.188.198.56]. 199.101.28.20 seems to be search.dnsassist.verizon.net. Are you sure that the nameservers you are using aren't doing friendly rewriting of NXDOMAIN responses for you? -- Chris Thompson Email: c...@cam.ac.uk ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Sites that points their A Record to localhost
Joseph S D Yao j...@tux.org wrote: On 2014-01-12 10:04, Chris Thompson wrote: That would be more plausible if www.p3net.net actually resolved to something, rather than giving NXDOMAIN ... How interesting. From here I see (and saw before I posted): ;; ANSWER SECTION: www.p3net.net.0 IN A 199.101.28.20 That IP address indicates that your ISP is lying to you. It belongs to Skye By Nominum which is a cloud DNS service. I guess this is Skye Search since that sounds like a rent-seeking scheme based on replacing NXDOMAINs with advertising. http://www.darkreading.com/nominum-rolls-out-skye-dns-cloud-service/220100568 Tony. -- f.anthony.n.finch d...@dotat.at http://dotat.at/ Forties, Cromarty: East, veering southeast, 4 or 5, occasionally 6 at first. Rough, becoming slight or moderate. Showers, rain at first. Moderate or good, occasionally poor at first. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Sites that points their A Record to localhost
From: Tony Finch d...@dotat.at ;; ANSWER SECTION: www.p3net.net. 0 IN A 199.101.28.20 That IP address indicates that your ISP is lying to you. It belongs to Skye By Nominum which is a cloud DNS service. I guess this is Skye Search since that sounds like a rent-seeking scheme based on replacing NXDOMAINs with advertising. http://www.darkreading.com/nominum-rolls-out-skye-dns-cloud-service/220100568 Maybe this is why the .berlin TLD is including the copyright notice in their TXT record: https://lists.dns-oarc.net/pipermail/dns-operations/2014-January/011211.html Confidentiality Notice: This electronic message and any attachments may contain confidential or privileged information, and is intended only for the individual or entity identified above as the addressee. If you are not the addressee (or the employee or agent responsible to deliver it to the addressee), or if this message has been addressed to you in error, you are hereby notified that you may not copy, forward, disclose or use any part of this message or any attachments. Please notify the sender immediately by return e-mail or telephone and delete this message from your system. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Sites that points their A Record to localhost
If the domain owner *really* feels that they have to publish *some* address record for a particular name, but there is no available service at that name, then the null or unspecified address (IPv4 = 0.0.0.0, IPv6 = ::0) is the appropriate value to put there. Loopback is anti-social; an apparent attempt to make the client waste resources connecting to itself. In legal terms, one might call this an attractive nuisance. - Kevin P.S. I wish more load-balancer vendors would understand, appreciate and adopt the use of the null/unspecified address to mean no service available here. P.P.S. I credit Mark Andrews for opening my eyes to the proper use of null/unspecified. On 1/10/2014 11:36 PM, Joseph S D Yao wrote: On 2014-01-10 15:01, Eduardo Bonsi wrote: ... It seems like they have their domain configuration A Record pointed to the localhost. We all know that the localhost is not routable outside of the internet. Therefore I am sure their website cannot resolve out of the 127.0.0.1. In addition to that, it is possible that this is happening only here because of the way our Server configuration is setup in the OS X to bring the resolver to the localhost first before it can go out to the distributed domains/websites through the Apache conf. ... There seems to be a pile of misconceptions here. (1) There is no requirement at all that a domain name have an A record. It does not have to resolve to an IP address at all. It only has to have an SOA record and an NS record (preferably more than one); and not even that, if it is a subdomain that is not a separate zone. (2) There is no requirement that a domain name refer to the Web site for that domain. I personally don't like that (for no special reason), and neither apparently does the owner of this domain, who forces people to go to the trouble of typing in www.p3net.net to get to his or her Web site. Incidentally, there is no requirement that the domain name refer to a mail server, either (which used to be common before the Web existed), or to an FTP server, or to a Telnet server, or to a nuclear reactor control device. Or to anything. (3) However, any name MAY resolve to any IP address, routable or not. That doesn't mean there's anything useful, or even related to that domain, at that IP address. (4) 127.0.0.1 is the IP equivalent of the English language word me. If I say, me, I am referring to myself. If you say, me, you are referring to yourself. It cannot be used to direct anyone to somewhere else. In fact, some use it to deflect probers AWAY from themselves, and back on the prober's own server. (E.g., if I wanted to probe p3net.net, my server would be probing itself!) (5) 127.0.0.1 is not among the IP addresses mislabeled as unroutable. It is always routable. To right here. Well, for you, right there. (6) Just because OS X has 127.0.0.1 as the resolver has no effect on what that resolver returns. Don't confuse the concepts. I think there were some others, but it's getting late. Joe Yao ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Sites that points their A Record to localhost
On 2014-01-14 09:56, Chris Thompson as IP Register wrote: ... 199.101.28.20 seems to be search.dnsassist.verizon.net. Are you sure that the nameservers you are using aren't doing friendly rewriting of NXDOMAIN responses for you? ... Ack. Good thing you can't see how embarrassed I'm blushing. That's exactly right. At some point my ISP router/switch had to be reset to clear some major malfeasance and I never went back into it and corrected its default DNS servers again. Derned lying cheating scoundrel of a network device. The shamed Joseph Yao ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Sites that points their A Record to localhost
On Jan 11 2014, Joseph S D Yao wrote: (2) There is no requirement that a domain name refer to the Web site for that domain. I personally don't like that (for no special reason), and neither apparently does the owner of this domain, who forces people to go to the trouble of typing in www.p3net.net to get to his or her Web site. On 12.01.14 15:04, Chris Thompson wrote: That would be more plausible if www.p3net.net actually resolved to something, rather than giving NXDOMAIN ... why? If it's not supposed to work, it should give NXDOMAIN instead of fake record (including localhost). -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. The only substitute for good manners is fast reflexes. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Sites that points their A Record to localhost
On 1/10/14, 8:36 PM, Joseph S D Yao wrote: There seems to be a pile of misconceptions here. Joseph, 1. No one from this list that answered to my original question actually showed any degree of confusion, (including myself). There were only observations on the subject, nothing more... 2. All your (6) observations on the subject are very basic 101 stuff and have very little to do with what I originally asked. I have not contested or said what a person can and cannot do with their own Bind configuration. 3. What I originally asked and what I also suspected to be the answer, (has already been answered here), so I am not going to repeat myself in those things you actually missed. Thanks for your views! Eduardo -- Eduardo Bonsi System Admin BEARTCOMMUNICATIONS beart...@pacbell.net From: Joseph S D Yao j...@tux.org To: bind-users@lists.isc.org Sent: Friday, January 10, 2014 8:36 PM Subject: Re: Sites that points their A Record to localhost On 2014-01-10 15:01, Eduardo Bonsi wrote: ... It seems like they have their domain configuration A Record pointed to the localhost. We all know that the localhost is not routable outside of the internet. Therefore I am sure their website cannot resolve out of the 127.0.0.1. In addition to that, it is possible that this is happening only here because of the way our Server configuration is setup in the OS X to bring the resolver to the localhost first before it can go out to the distributed domains/websites through the Apache conf. ... There seems to be a pile of misconceptions here. (1) There is no requirement at all that a domain name have an A record. It does not have to resolve to an IP address at all. It only has to have an SOA record and an NS record (preferably more than one); and not even that, if it is a subdomain that is not a separate zone. (2) There is no requirement that a domain name refer to the Web site for that domain. I personally don't like that (for no special reason), and neither apparently does the owner of this domain, who forces people to go to the trouble of typing in www.p3net.net to get to his or her Web site. Incidentally, there is no requirement that the domain name refer to a mail server, either (which used to be common before the Web existed), or to an FTP server, or to a Telnet server, or to a nuclear reactor control device. Or to anything. (3) However, any name MAY resolve to any IP address, routable or not. That doesn't mean there's anything useful, or even related to that domain, at that IP address. (4) 127.0.0.1 is the IP equivalent of the English language word me. If I say, me, I am referring to myself. If you say, me, you are referring to yourself. It cannot be used to direct anyone to somewhere else. In fact, some use it to deflect probers AWAY from themselves, and back on the prober's own server. (E.g., if I wanted to probe p3net.net, my server would be probing itself!) (5) 127.0.0.1 is not among the IP addresses mislabeled as unroutable. It is always routable. To right here. Well, for you, right there. (6) Just because OS X has 127.0.0.1 as the resolver has no effect on what that resolver returns. Don't confuse the concepts. I think there were some others, but it's getting late. Joe Yao ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Sites that points their A Record to localhost
On 01/13/14 03:43, Barry Margolin wrote: In article mailman.2022.1389603219.20661.bind-us...@lists.isc.org, Matus UHLAR - fantomas uh...@fantomas.sk wrote: On Jan 11 2014, Joseph S D Yao wrote: (2) There is no requirement that a domain name refer to the Web site for that domain. I personally don't like that (for no special reason), and neither apparently does the owner of this domain, who forces people to go to the trouble of typing in www.p3net.net to get to his or her Web site. On 12.01.14 15:04, Chris Thompson wrote: That would be more plausible if www.p3net.net actually resolved to something, rather than giving NXDOMAIN ... why? If it's not supposed to work, it should give NXDOMAIN instead of fake record (including localhost). That's his point: they're not forcing people to go to the trouble of typing in www.p3net.net, because there is no such record. OTOH, some of us think the notion that all websites have to begin with www. is dated. I want the site to work without the 'www.' I find it annoying that keep running into sites where only www.domain.name works.worse are the ones where domain name alone doesn't something else... Though there used to be an enforced policy here, when you requested a website name to be added to DNS, you got both with and without www forms auto-magically. As well as be in both our domains. Can cause problems with sites that do SSLthey've always been known only by one name, but since the other forms exist and somebody out of the blue tries one ... and they typed https:// firstwell, now its somebody's problem that it resulted in an SSL error. Including the person that was just following policy Seemed to me that there are mailservers that reject mail from domains that claim to be localhost, (or perhaps its sites like these that result in some sites rejecting such domains?) What's p3net.net? -- Who: Lawrence K. Chen, P.Eng. - W0LKC - Sr. Unix Systems Administrator For: Enterprise Server Technologies (EST) -- SafeZone Ally ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Sites that points their A Record to localhost
On Jan 11 2014, Joseph S D Yao wrote: [...snip...] (2) There is no requirement that a domain name refer to the Web site for that domain. I personally don't like that (for no special reason), and neither apparently does the owner of this domain, who forces people to go to the trouble of typing in www.p3net.net to get to his or her Web site. That would be more plausible if www.p3net.net actually resolved to something, rather than giving NXDOMAIN ... -- Chris Thompson Email: c...@cam.ac.uk ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Sites that points their A Record to localhost
I have an issue happening here. I actually do have a vague idea what it is but I am not real sure how is happening and how to avoid it. I was doing a research the other day and landed on this domain; p3net.net I found a little strange when I logged into this domain because rather than seeing their website, I am seeing our main website page. Then, I performed a dig on their domain and got this output: ; DiG 0.0.0 p3net.net ;; global options: +cmd ;; Got answer: ;; -HEADER- opcode: QUERY, status: NOERROR, id: 59 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 3 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;p3net.net. IN A ;; ANSWER SECTION: p3net.net. 7075 IN A 127.0.0.1 ;; AUTHORITY SECTION: p3net.net. 172672 IN NS dns1.namesecure.com. p3net.net. 172672 IN NS dns2.namesecure.com. ;; ADDITIONAL SECTION: dns1.namesecure.com. 172 IN A 205.178.190.56 dns2.namesecure.com. 174 IN A 206.188.198.56 It seems like they have their domain configuration A Record pointed to the localhost. We all know that the localhost is not routable outside of the internet. Therefore I am sure their website cannot resolve out of the 127.0.0.1. In addition to that, it is possible that this is happening only here because of the way our Server configuration is setup in the OS X to bring the resolver to the localhost first before it can go out to the distributed domains/websites through the Apache conf. In my name configuration I have everything going to their respective internal non-routable separated ip addresses and localhost resolve to localhost only. I do not have any domain or website pointing to the localhost directly on my name conf. Every website point to their respective internal ip addresses only. Ps: (If the information I am giving appears to be too vague and you need any specific information, please, ask!) Thanks! Eduardo -- Eduardo Bonsi System Admin beart...@pacbell.net___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Sites that points their A Record to localhost
On Jan 10, 2014, at 3:01 PM, Eduardo Bonsi beart...@pacbell.net wrote: I have an issue happening here. I actually do have a vague idea what it is but I am not real sure how is happening and how to avoid it. I was doing a research the other day and landed on this domain; p3net.net Yes, it seems that they have an A record for that label that provides the IP address 127.0.0.1. You probably want to ask the owner of the zone about this, as I’m not sure what the community can do about it. AlanC -- Alan Clegg | +1-919-355-8851 | a...@clegg.com signature.asc Description: Message signed with OpenPGP using GPGMail ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Sites that points their A Record to localhost
On 2014-01-10 12:25, Alan Clegg wrote: On Jan 10, 2014, at 3:01 PM, Eduardo Bonsi beart...@pacbell.net wrote: I have an issue happening here. I actually do have a vague idea what it is but I am not real sure how is happening and how to avoid it. I was doing a research the other day and landed on this domain; p3net.net Yes, it seems that they have an A record for that label that provides the IP address 127.0.0.1. You probably want to ask the owner of the zone about this, as I’m not sure what the community can do about it. unbound, for example, has an option to discard replies that include non-routable IP addresses outside of expected/predictable locations. -- Dave Warren http://www.hireahit.com/ http://ca.linkedin.com/in/davejwarren ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Sites that points their A Record to localhost
From: Alan Clegg a...@clegg.com Yes, it seems that they have an A record for that label that provides the IP address 127.0.0.1. You probably want to ask the owner of the zone about this, as I?m not sure what the community can do about it. They have an MX record, so perhaps the domain is only intended for email. # host p3net.net p3net.net has address 127.0.0.1 p3net.net mail is handled by 10 aspmx.l.google.com. Although, they should have more MX records if using google. Confidentiality Notice: This electronic message and any attachments may contain confidential or privileged information, and is intended only for the individual or entity identified above as the addressee. If you are not the addressee (or the employee or agent responsible to deliver it to the addressee), or if this message has been addressed to you in error, you are hereby notified that you may not copy, forward, disclose or use any part of this message or any attachments. Please notify the sender immediately by return e-mail or telephone and delete this message from your system. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Sites that points their A Record to localhost
On 2014-01-10 12:36, wbr...@e1b.org wrote: From: Alan Clegg a...@clegg.com Yes, it seems that they have an A record for that label that provides the IP address 127.0.0.1. You probably want to ask the owner of the zone about this, as I?m not sure what the community can do about it. They have an MX record, so perhaps the domain is only intended for email. # host p3net.net p3net.net has address 127.0.0.1 p3net.net mail is handled by 10 aspmx.l.google.com. Although, they should have more MX records if using google. And less A records if they don't intend to do anything but email. But it's an imperfect world. -- Dave Warren http://www.hireahit.com/ http://ca.linkedin.com/in/davejwarren ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Sites that points their A Record to localhost
-Original Message- From: Dave Warren da...@hireahit.com Date: Friday, January 10, 2014 at 15:47 To: Bind Users bind-users@lists.isc.org Subject: Re: Sites that points their A Record to localhost On 2014-01-10 12:36, wbr...@e1b.org wrote: From: Alan Clegg a...@clegg.com Yes, it seems that they have an A record for that label that provides the IP address 127.0.0.1. You probably want to ask the owner of the zone about this, as I?m not sure what the community can do about it. They have an MX record, so perhaps the domain is only intended for email. # host p3net.net p3net.net has address 127.0.0.1 p3net.net mail is handled by 10 aspmx.l.google.com. Although, they should have more MX records if using google. And less A records if they don't intend to do anything but email. But it's an imperfect world. -- Dave Warren http://www.hireahit.com/ http://ca.linkedin.com/in/davejwarren Isn¹t there a ³rule² (note lower case) that says ŒZones _should_ have an A record. CNAMEs _should_not_ point to CNAMES.¹ Things that work, but shouldn¹t. I may be wrong on the rules, I can¹t find my reference. -- Hal King - h...@utk.edu Systems Administrator Office of Information Technology Shared Systems Services The University of Tennessee 103C5 Kingston Pike Building 2309 Kingston Pk. Knoxville, TN 37996 Phone: 974-1599 ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Sites that points their A Record to localhost
Thanks everyone for the input on this matter! Dave Warren said: ...And less A records if they don't intend to do anything but email. But it's an imperfect world. No doubt it is! Like I said, it is not a big deal! Is not that people are able to re-route anything. That just happens because my resolver is pointed to the internal localhost first. No one in the internet can see my website pointed to his localhost and resolve to his domain. I can see that because when I log to his domain, it goes to my internal resolver and appears that I am logged to his domain and after that I am starting to see my website being served from there. I know how it is happening and my concern was if that could generate any technical or security problems on my site. Eduardo -- Eduardo Bonsi System Admin beart...@pacbell.net From: Dave Warren da...@hireahit.com To: bind-users@lists.isc.org Sent: Friday, January 10, 2014 12:47 PM Subject: Re: Sites that points their A Record to localhost On 2014-01-10 12:36, wbr...@e1b.org wrote: From: Alan Clegg a...@clegg.com Yes, it seems that they have an A record for that label that provides the IP address 127.0.0.1. You probably want to ask the owner of the zone about this, as I?m not sure what the community can do about it. They have an MX record, so perhaps the domain is only intended for email. # host p3net.net p3net.net has address 127.0.0.1 p3net.net mail is handled by 10 aspmx.l.google.com. Although, they should have more MX records if using google. And less A records if they don't intend to do anything but email. But it's an imperfect world. -- Dave Warren http://www.hireahit.com/ http://ca.linkedin.com/in/davejwarren ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Sites that points their A Record to localhost
On 01/10, Eduardo Bonsi wrote: I know how it is happening and my concern was if that could generate any technical or security problems on my site. no ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Sites that points their A Record to localhost
On 2014-01-10 15:01, Eduardo Bonsi wrote: ... It seems like they have their domain configuration A Record pointed to the localhost. We all know that the localhost is not routable outside of the internet. Therefore I am sure their website cannot resolve out of the 127.0.0.1. In addition to that, it is possible that this is happening only here because of the way our Server configuration is setup in the OS X to bring the resolver to the localhost first before it can go out to the distributed domains/websites through the Apache conf. ... There seems to be a pile of misconceptions here. (1) There is no requirement at all that a domain name have an A record. It does not have to resolve to an IP address at all. It only has to have an SOA record and an NS record (preferably more than one); and not even that, if it is a subdomain that is not a separate zone. (2) There is no requirement that a domain name refer to the Web site for that domain. I personally don't like that (for no special reason), and neither apparently does the owner of this domain, who forces people to go to the trouble of typing in www.p3net.net to get to his or her Web site. Incidentally, there is no requirement that the domain name refer to a mail server, either (which used to be common before the Web existed), or to an FTP server, or to a Telnet server, or to a nuclear reactor control device. Or to anything. (3) However, any name MAY resolve to any IP address, routable or not. That doesn't mean there's anything useful, or even related to that domain, at that IP address. (4) 127.0.0.1 is the IP equivalent of the English language word me. If I say, me, I am referring to myself. If you say, me, you are referring to yourself. It cannot be used to direct anyone to somewhere else. In fact, some use it to deflect probers AWAY from themselves, and back on the prober's own server. (E.g., if I wanted to probe p3net.net, my server would be probing itself!) (5) 127.0.0.1 is not among the IP addresses mislabeled as unroutable. It is always routable. To right here. Well, for you, right there. (6) Just because OS X has 127.0.0.1 as the resolver has no effect on what that resolver returns. Don't confuse the concepts. I think there were some others, but it's getting late. Joe Yao ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
