Re: disable dnssec in bind resolver

2010-06-05 Thread Joe Baptista
into BIND now or does he intend to wait until it becomes an RFC? regards joe baptista ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users

Re: [ga] Re: Resolving .gov w/dnssec

2010-04-23 Thread Joe Baptista
down. Where is SAIC on that. The plan I am putting together for the inculsives will generate some new fire under the pants of these obstructionists and they will find that a better mousetrap can be built. Thank you - I and my TLD holders thank you. regards joe baptista --- On *Thu, 4

Re: Resolving .gov w/dnssec

2010-04-22 Thread Joe Baptista
Looks like the future of the DNSSEC make work project includes resolution failures here and there. More security - less stability - guaranteed slavery. I wounder if it's a fair trade. we'll see .. regards joe baptista On Thu, Apr 22, 2010 at 10:52 AM, Chris Thompson c...@cam.ac.uk wrote

Re: OpenDNS today announced it has adopted DNSCurve to secure DNS

2010-02-25 Thread Joe Baptista
On Wed, Feb 24, 2010 at 10:23 PM, Alan Clegg acl...@isc.org wrote: Joe Baptista wrote: dnssec-enable yes; and dnssec-validation yes; are the defaults since BIND 9.5 How do I turn it off. Since you edited out the most important part of my post, I'll repeat

Re: OpenDNS today announced it has adopted DNSCurve to secure DNS

2010-02-24 Thread Joe Baptista
feed compared to DNScurve. When we do, I'll be happy to write the code. It's happened - start writing. regards joe baptista ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users

Re: OpenDNS today announced it has adopted DNSCurve to secure DNS

2010-02-24 Thread Joe Baptista
joe baptista ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users

Re: OpenDNS today announced it has adopted DNSCurve to secure DNS

2010-02-24 Thread Joe Baptista
is turned on by default in BIND. Incidentally - is it? regards joe baptista ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users

Re: OpenDNS today announced it has adopted DNSCurve to secure DNS

2010-02-24 Thread Joe Baptista
On Wed, Feb 24, 2010 at 10:08 PM, Alan Clegg acl...@isc.org wrote: dnssec-enable yes; and dnssec-validation yes; are the defaults since BIND 9.5 How do I turn it off. Thanks joe ___ bind-users mailing list bind-users@lists.isc.org

OpenDNS today announced it has adopted DNSCurve to secure DNS

2010-02-23 Thread Joe Baptista
Now that OpenDNS the largest provider of public DNS supports DNSCurve http://twitter.com/joebaptista/status/9555178362 Would it be possible to include DNScurve support in bind? thanks joe baptista ___ bind-users mailing list bind-users@lists.isc.org

Re: OpenDNS today announced it has adopted DNSCurve to secure DNS

2010-02-23 Thread Joe Baptista
is being spent on the DNSSEC make work project - time and energy wasted. DNScurve installs - configures and runs. No need for a make work project. agreed? regards joe baptista On Tue, Feb 23, 2010 at 10:28 PM, Michael Sinatra mich...@rancid.berkeley.edu wrote: On 02/23/10 18:31, Joe Baptista

Re: how to setup a local root nameserver?

2010-02-02 Thread Joe Baptista
* A 172.16.30.30 That will work too. regards joe baptista ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users

Re: how to setup a local root nameserver?

2010-02-01 Thread Joe Baptista
that. regards joe baptista If you need help get back to me privately. On Mon, Feb 1, 2010 at 6:50 PM, fddi f...@gmx.it wrote: Hello, I need to setup a local named configuration so that ANY request will be resolved to a specific single IP only. I mean any kind of DNS resolutin request

DNS inventor Dr. Paul Mockapetris audio interview available at NPR

2009-12-13 Thread Joe Baptista
Since we have been talking about DNS recently here is an audio interview by NPR with DNS inventor Dr. Paul Mockapetris quote: *A friend of mine said I was smart enough to invent the DNS, but not smart enough to own it, * http://bit.ly/8iSEql This link guaranteed free of evil (signed joe baptista

Re: Punycode nslookup

2009-12-04 Thread Joe Baptista
in the old days. As for you question concerning the browser converting the domain to punycode before asking a nameserver - yes that is what some browsers do. I'm not sure why because it must confuse some users when that happens. regards joe baptista On Fri, Dec 4, 2009 at 9:41 AM, Kai Szymanski k

Re: Punycode nslookup

2009-12-04 Thread Joe Baptista
the exact date and the only browser I tested it on was Firefox. Have you tried other browsers? And what browser(s) have you tested this on. You have hit on a very important point here. regards joe baptista ___ bind-users mailing list bind-users@lists.isc.org

Re: Punycode nslookup

2009-12-04 Thread Joe Baptista
will result in confusion. The browser has to understand IDN. Most current browsers do, including (I believe) IE 7 and later, Firefox 2 and later, and Safari 3 and later. Does anyone have a list of idn domains? I'd like to try it out. cheers joe baptista

Re: When dnssec-validation stops working?

2009-08-16 Thread Joe Baptista
avoided at all costs. cheers joe baptista -- Joe Baptista www.publicroot.org PublicRoot Consortium The future of the Internet is Open, Transparent, Inclusive, Representative Accountable to the Internet community @large

Re: The Year of the Sevenfold Increase

2009-07-30 Thread Joe Baptista
You guys get excited over small potatoes. There are hundreds of millions of potential DLV RRsets. This is not even a drop in the bucket. cheers joe baptista p.s. this message does not imply i support dnssec deployment. dnscurve is the solution to our woes http://bit.ly/pJVq4 On Thu, Jul 30

Re: The Year of the Sevenfold Increase

2009-07-30 Thread Joe Baptista
I don't think buddha cares much for bind. cheers joe baptista On Thu, Jul 30, 2009 at 2:26 PM, fakessh fake...@fakessh.eu wrote: nb : Buddha peace themselve On Thu, 30 Jul 2009 13:41:17 -0400, Joe Baptista bapti...@publicroot.org wrote: You guys get excited over small potatoes

Re: domain name length

2009-06-29 Thread Joe Baptista
yes - you can do that. and even assign the same NS or other if you want. a domain can be very large to the human eye. I'm not sure how many characters - but more then 200 I think. Go crazy. regards joe baptista On Mon, Jun 29, 2009 at 9:28 PM, Dan Letkeman danletke...@gmail.com wrote: Hello

Re: DNSDigger.com - An announcement and request for feature tips.

2009-06-16 Thread Joe Baptista
limited vision of the name space. But I'm sure it will improve. cheers joe baptista - thats one recommend bookmark ;) On Tue, Jun 16, 2009 at 8:19 PM, Jay Ess li...@netrogenic.com wrote: DNSDigger.com - A massive reverse resolver that lets you dig deeper into the Net. DNSDigger.com

Re: Unified Root - Domain Configuration Issue

2009-01-18 Thread Joe Baptista
but is not recommended because it does not always work depending on the application. If the application relies solely on gethostbyname then it will probably work - but some applications do a bit more checking of the domain name and not all applications will allow it. cheers joe baptista -- Joe Baptista