Re: [DNSOP] Localhost entries in zones
bmanning@vacation.karoshi.com Thu, 03 April 2008 20:49 UTC
Return-Path: <dnsop-bounces@ietf.org>
X-Original-To: dnsop-archive@lists.ietf.org
Delivered-To: ietfarch-dnsop-archive@core3.amsl.com
Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 75F0528C3DE; Thu, 3 Apr 2008 13:49:02 -0700 (PDT)
X-Original-To: dnsop@core3.amsl.com
Delivered-To: dnsop@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 6961B28C371 for <dnsop@core3.amsl.com>; Thu, 3 Apr 2008 13:49:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Uy+A1WswHbxz for <dnsop@core3.amsl.com>; Thu, 3 Apr 2008 13:49:00 -0700 (PDT)
Received: from vacation.karoshi.com (unknown [IPv6:2002:c620:68b:0:230:48ff:fe11:220a]) by core3.amsl.com (Postfix) with ESMTP id 4777128C370 for <dnsop@ietf.org>; Thu, 3 Apr 2008 13:48:58 -0700 (PDT)
Received: from karoshi.com (localhost.localdomain [127.0.0.1]) by vacation.karoshi.com (8.12.8/8.12.8) with ESMTP id m33KlZqM002607; Thu, 3 Apr 2008 20:47:35 GMT
Received: (from bmanning@localhost) by karoshi.com (8.12.8/8.12.8/Submit) id m33KlTku002606; Thu, 3 Apr 2008 20:47:29 GMT
Date: Thu, 03 Apr 2008 20:47:29 +0000
From: bmanning@vacation.karoshi.com
To: Edward Lewis <Ed.Lewis@neustar.biz>
Message-ID: <20080403204729.GC2518@vacation.karoshi.com.>
References: <B33086268D53A0429A3AA2774C83892C028E15A8@KAEVS1.SIDN.local> <a06240803c41a9d2e8268@[0.0.0.0]>
Mime-Version: 1.0
Content-Disposition: inline
In-Reply-To: <a06240803c41a9d2e8268@[0.0.0.0]>
User-Agent: Mutt/1.4.1i
Cc: dnsop@ietf.org
Subject: Re: [DNSOP] Localhost entries in zones
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/dnsop>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: dnsop-bounces@ietf.org
Errors-To: dnsop-bounces@ietf.org
still do... both localhost. 1.0.0.127.in-addr.arpa. ::1.ip6.arpa. # # yeah yeah... shoot me --bill On Thu, Apr 03, 2008 at 10:48:45AM -0400, Edward Lewis wrote: > At 12:19 +0200 4/3/08, Antoin Verschuren wrote: > >Hi, > > > >I may have missed this, but I'd like to hear the lists opinion about > >this article: > >http://seclists.org/bugtraq/2008/Jan/0270.html > >that states that localhost entries in zones should be discouraged. > > My problem with that doc is it says "uh, don't operate DNS servers if > you make mistakes." Well, I am referring to the problem of > "localhost A 127.0.0.1" not having the trailing (FQDN) dot which > opens the doors to problems. > > Here are two rules to combat this: > > 1) Okay, no one forget the dot, OK? > 2) Unless. you. put. dots. after. every. word. for. a. week., you. > are. prevented. from. ever. typing. named. . > > >I know that localhost entries were encouraged in RFC 1537 but that one > >is obsolted by RFC 1912 which doesn't say anything anymore about > >localhost entries, so no encouragement nor disencouragement. > >I think that if localhost entries in zones should be discouraged, it > >should come from the consensus of this WG. > > OTOH, I have in the past been religious about including > localhost(dot) in both the forward and reverse zones of my servers. > But I don't go to church anymore. I forget why I dropped the > practice, I mean putting in the localhost(dot), not the church thing, > but I know I wasn't happy with it. > > Thinking, thFrom dnsop-bounces@ietf.org Thu Apr 3 13:49:02 2008 Return-Path: <dnsop-bounces@ietf.org> X-Original-To: dnsop-archive@optimus.ietf.org Delivered-To: ietfarch-dnsop-archive@core3.amsl.com Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 75F0528C3DE; Thu, 3 Apr 2008 13:49:02 -0700 (PDT) X-Original-To: dnsop@core3.amsl.com Delivered-To: dnsop@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 6961B28C371 for <dnsop@core3.amsl.com>; Thu, 3 Apr 2008 13:49:01 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.599 X-Spam-Level: X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Uy+A1WswHbxz for <dnsop@core3.amsl.com>; Thu, 3 Apr 2008 13:49:00 -0700 (PDT) Received: from vacation.karoshi.com (unknown [IPv6:2002:c620:68b:0:230:48ff:fe11:220a]) by core3.amsl.com (Postfix) with ESMTP id 4777128C370 for <dnsop@ietf.org>; Thu, 3 Apr 2008 13:48:58 -0700 (PDT) Received: from karoshi.com (localhost.localdomain [127.0.0.1]) by vacation.karoshi.com (8.12.8/8.12.8) with ESMTP id m33KlZqM002607; Thu, 3 Apr 2008 20:47:35 GMT Received: (from bmanning@localhost) by karoshi.com (8.12.8/8.12.8/Submit) id m33KlTku002606; Thu, 3 Apr 2008 20:47:29 GMT Date: Thu, 3 Apr 2008 20:47:29 +0000 From: bmanning@vacation.karoshi.com To: Edward Lewis <Ed.Lewis@neustar.biz> Message-ID: <20080403204729.GC2518@vacation.karoshi.com.> References: <B33086268D53A0429A3AA2774C83892C028E15A8@KAEVS1.SIDN.local> <a06240803c41a9d2e8268@[0.0.0.0]> Mime-Version: 1.0 Content-Disposition: inline In-Reply-To: <a06240803c41a9d2e8268@[0.0.0.0]> User-Agent: Mutt/1.4.1i Cc: dnsop@ietf.org Subject: Re: [DNSOP] Localhost entries in zones X-BeenThere: dnsop@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org> List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe> List-Archive: <http://www.ietf.org/pipermail/dnsop> List-Post: <mailto:dnsop@ietf.org> List-Help: <mailto:dnsop-request@ietf.org?subject=help> List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe> Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: dnsop-bounces@ietf.org Errors-To: dnsop-bounces@ietf.org still do... both localhost. 1.0.0.127.in-addr.arpa. ::1.ip6.arpa. # # yeah yeah... shoot me --bill On Thu, Apr 03, 2008 at 10:48:45AM -0400, Edward Lewis wrote: > At 12:19 +0200 4/3/08, Antoin Verschuren wrote: > >Hi, > > > >I may have missed this, but I'd like to hear the lists opinion about > >this article: > >http://seclists.org/bugtraq/2008/Jan/0270.html > >that states that localhost entries in zones should be discouraged. > > My problem with that doc is it says "uh, don't operate DNS servers if > you make mistakes." Well, I am referring to the problem of > "localhost A 127.0.0.1" not having the trailing (FQDN) dot which > opens the doors to problems. > > Here are two rules to combat this: > > 1) Okay, no one forget the dot, OK? > 2) Unless. you. put. dots. after. every. word. for. a. week., you. > are. prevented. from. ever. typing. named. . > > >I know that localhost entries were encouraged in RFC 1537 but that one > >is obsolted by RFC 1912 which doesn't say anything anymore about > >localhost entries, so no encouragement nor disencouragement. > >I think that if localhost entries in zones should be discouraged, it > >should come from the consensus of this WG. > > OTOH, I have in the past been religious about including > localhost(dot) in both the forward and reverse zones of my servers. > But I don't go to church anymore. I forget why I dropped the > practice, I mean putting in the localhost(dot), not the church thing, > but I know I wasn't happy with it. > > Thinking, inking, no, can't recall the reason now. Maybe with time > and discussion I will. > -- > -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- > Edward Lewis +1-571-434-5468 > NeuStar > > Never confuse activity with progress. Activity pays more. > _______________________________________________ > DNSOP mailing list > DNSOP@ietf.org > https://www.ietf.org/mailman/listinfo/dnsop _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop thinking, no, can't recall the reason now. Maybe with time > and discussion I will. > -- > -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- > Edward Lewis +1-571-434-5468 > NeuStar > > Never confuse activity with progress. Activity pays more. > _______________________________________________ > DNSOP mailing list > DNSOP@ietf.org > https://www.ietf.org/mailman/listinfo/dnsop _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
- [DNSOP] Localhost entries in zones Antoin Verschuren
- Re: [DNSOP] Localhost entries in zones Edward Lewis
- Re: [DNSOP] Localhost entries in zones bmanning
- Re: [DNSOP] Localhost entries in zones Peter Koch
- Re: [DNSOP] Localhost entries in zones Mark Andrews