On Fri, Oct 17, 2003 at 01:40:00AM -0700, Vadim Antonov wrote:
Actually, if ISPs and engineering folks at ISPs are so pissed off at VeriSign they can easily kill the entire Sitefinder scam by simply routing its traffic to a bit bucket. And by rerouting the .COM and .NET to the boxes having the sanitized versions of zones. It does not say anywhere that providers are oblidged to carry all DNS traffic directly to the original nameservers.
Yes, but, part of what pissed off many folk was that someone was messing about with data near the top of the DNS tree which they thought were inviolable. Reconfiguring nameservers to ask for .COM and .NET details from somewhere else or to give RCODE 3 when it wasn't what was received feels like joining the anarchy rather than being the right solution. Having said that, the right solution might be a while in coming. A 'just good enough' solution should suffice for now. -- Andrew Bangs andrewb@demon.net