3 Apr
2018
3 Apr
'18
6:29 a.m.
This also ignores the shift if every house in the world did its own recursion. TLD servers and auth servers all over the world would have to massively up their capacity to cope.
With my TLD operator hat, I tend to say it is not a problem, we already have a lot of extra capacity, to handle dDoS.
As long as ISPs don't actually disallow running of recursive servers
That would be a terrible violation of network neutrality. I hope that such ISP will go bankrupt.
With my ISP hat on: I see no problem with this as long as the resolver is not open to the Internet. There are unfortunately plenty of home user equipment with an open DNS proxy (probably also some resolvers). This *will* be misused. Steinar Haug, Nethelp consulting, sthaug@nethelp.no