Re: [DNSOP] DNS-Server distribution statistics
George Michaelson <ggm@algebras.org> Sun, 12 February 2017 22:44 UTC
Return-Path: <ggm@algebras.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 06B6E129430 for <dnsop@ietfa.amsl.com>; Sun, 12 Feb 2017 14:44:47 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=algebras-org.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4Bdao27abUA9 for <dnsop@ietfa.amsl.com>; Sun, 12 Feb 2017 14:44:44 -0800 (PST)
Received: from mail-ua0-x22d.google.com (mail-ua0-x22d.google.com [IPv6:2607:f8b0:400c:c08::22d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 88D15126BF6 for <dnsop@ietf.org>; Sun, 12 Feb 2017 14:44:44 -0800 (PST)
Received: by mail-ua0-x22d.google.com with SMTP id 35so56367651uak.1 for <dnsop@ietf.org>; Sun, 12 Feb 2017 14:44:44 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=algebras-org.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :content-transfer-encoding; bh=YYcMCjRdtjGqdHsjJYPYsIgy5Mc+PzpKEryv2TQ6uAQ=; b=s9wxbyDzm7hCKlxDjYZctdZG8lXehXsUt8tu/NtmeTceIpUXM/0TtOr9khnmLV4omg g56up+i8wmQIgbvMFRZHnRU33ewQTnmnDqLQ8F8Z/fpL7vzex4BnCMHc5/op134JgURt o3Av+ZxwVt6vi1vrbTAbCp2NwYF7z6/QLtBjmQRqmP+S/4EGjcqGMolpx1GRz3cylal/ Ux1bb1MQzWeO2pCjhXb34qiWnRDnc+6CFh4Fcdy0rhCCRTeCmONrYurqP0B7yvlnvkQd NzY36zWsMPILiyURX9kRMsDViTmbe09guO1N5qhJLgp8xssJvBh2JfU1OFMGLoC4/hGr a4Xg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:content-transfer-encoding; bh=YYcMCjRdtjGqdHsjJYPYsIgy5Mc+PzpKEryv2TQ6uAQ=; b=iQwUN+dNABaRscN0Gx3N1893W1AEEps244CyND2Xwoo0hqxZ1ctgrLXWYQ63NQe3aT F09mrol3+af2k+iHmHCpFrZfatsKUYfjDB8ghjtwJqi2mkugLmHIwYI2EmbobtS4iE8B 4Lw7uMiIuXWnEED5CKnSqjuYHBIIL3eWq5+h19f0LKsDV8rTJRL1X2TUMQahccVNnS28 NrQjd6Yh9sC3rwP/ewG6p03T/gfO0/G711tmiIcJ7xrKrRJFWCt8L+zKd+yD/pyzhVQB H3m2rzs1Cr4i0Lm6d5LE5S3cIw4y/FxDTtrw8Gd09WKnWkoWgYL99keTReSi3R+S1yua W7bw==
X-Gm-Message-State: AMke39kWcEgMLbMa3W7IBpIRX+w+8nSQ0F0X7HvpWCSxGSkzdqUJ+Qk9ZtxxJONVHM3mje3H2Ro5JPU0l0WTHg==
X-Received: by 10.176.91.72 with SMTP id v8mr10565153uae.23.1486939483376; Sun, 12 Feb 2017 14:44:43 -0800 (PST)
MIME-Version: 1.0
Received: by 10.103.48.211 with HTTP; Sun, 12 Feb 2017 14:44:43 -0800 (PST)
X-Originating-IP: [2001:dc0:a000:4:99d7:e508:81bc:2836]
In-Reply-To: <A05B583C828C614EBAD1DA920D92866BD06D902B@PODCWMBXEX501.ctl.intranet>
References: <20170211224923.78115C0660@smtp.hushmail.com> <667F88F0-FD47-41C6-8A66-581070395FC0@vpnc.org> <A05B583C828C614EBAD1DA920D92866BD06D902B@PODCWMBXEX501.ctl.intranet>
From: George Michaelson <ggm@algebras.org>
Date: Mon, 13 Feb 2017 00:44:43 +0200
Message-ID: <CAKr6gn0wdesHON0-Spy7uEuCtRZ97Znk88LRf6==w=1eZzv-Mw@mail.gmail.com>
To: dnsop <dnsop@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/VvpqJxu30najFGl4ABJHgy2s44U>
Subject: Re: [DNSOP] DNS-Server distribution statistics
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 12 Feb 2017 22:44:47 -0000
I have never entirely got with the people who think obscuring version information is necessary and correct. Designing for the bad actors presupposes they will somehow magically not attack you, simply because you obscured the version info. Root ops (I may misremember) stand out in my mind as a group who have from time to time said "we don't feel we need, or should tell you that" So on the whole, I think we should explore this "what version are you" question more, and possibly do better at flagging it. Having said which: people lie all the time. Either by intent, or because they reply with information which was correct when they set it, but has aged out. So even with the best of intentions, version-flagging needs to be taken with a grain of salt. -G On Sun, Feb 12, 2017 at 9:55 PM, Woodworth, John R <John.Woodworth@centurylink.com> wrote: > -----Original Message----- > From: DNSOP [mailto:dnsop-bounces@ietf.org] On Behalf Of Paul Hoffman >> >> On 11 Feb 2017, at 17:49, Allan Liska wrote: >> >> > ISC runs a monthly survey of DNS statistics: >> > https://ftp.isc.org/www/survey/reports/current/fpdns.txt (this is from >> > January 2017). >> > Information about the survey is here: >> > https://ftp.isc.org/www/survey/reports/current/survey.html >> > Not sure how useful their data is, but they have been doing it for a >> > long time, so they have great trending analysis. >> >> Do note, however, that fingerprinting DNS servers has gotten much harder >> over time, so take the results with a very large grain of salt. For >> example, the software that runs that survey seems to think that there >> are no versions of BIND 9 since 9.4.0a0. >> > > Thanks Paul! > > I was wondering about that. Figured there would be more people at least > near the bleeding-edge. > > > Thanks, > John > >> --Paul Hoffman >> >> _______________________________________________ >> DNSOP mailing list >> DNSOP@ietf.org >> https://www.ietf.org/mailman/listinfo/dnsop > > > -- THESE ARE THE DROIDS TO WHOM I REFER: > This communication is the property of CenturyLink and may contain confidential or privileged information. Unauthorized use of this communication is strictly prohibited and may be unlawful. If you have received this communication in error, please immediately notify the sender by reply e-mail and destroy all copies of the communication and any attachments. > > _______________________________________________ > DNSOP mailing list > DNSOP@ietf.org > https://www.ietf.org/mailman/listinfo/dnsop
- [DNSOP] DNS-Server distribution statistics Woodworth, John R
- Re: [DNSOP] DNS-Server distribution statistics Allan Liska
- Re: [DNSOP] DNS-Server distribution statistics Woodworth, John R
- Re: [DNSOP] DNS-Server distribution statistics Paul Hoffman
- Re: [DNSOP] DNS-Server distribution statistics Woodworth, John R
- Re: [DNSOP] DNS-Server distribution statistics George Michaelson
- Re: [DNSOP] DNS-Server distribution statistics Warren Kumari
- Re: [DNSOP] DNS-Server distribution statistics william manning