sameer <sameer@c2.org> said:
Is it? This is the _one_ thing in the article (is that term giving it too much legitimacy?) that I whought was barely true. Whoever controls the root level DNS servers effectively controls the Internet. I postulated a couple of months ago about how the US Govt might attempt to censor the rest of the world: "Remove lurid.porno.site.other-country from your DNS system within 72 hours or we will remove references to your DNS servers from the root level servers.". (I also speculated that if the US Govt tried doing this, that an 'underground' DNS system would form almost immediately.)
s> The US govt. doesn't run the root nameservers, nor are all the s> root nameservers within US jurisdiction. Granted, the US Govt doesn't run the US-based root servers. But, if an Internet 'Decency' law was passed, they certainly could try to threaten the US-based root server maintainers to make the cascading threats. And, as I understand the way DNS resolution works, address requests go down to your root domain then up from the other root domain, i.e., for me to find out what c2.org's address is, my system requests from: NS mpd.tandem.com NS tandem.com NS com NS org If this is correct, if the com NS has the entry for the org NS, I won't be able to resolve those names. Of course, explicit IP addresses and /etc/hosts entries would still work. -- #include <disclaimer.h> /* Sten Drescher */ To get my PGP public key, send me email with your public key and Subject: PGP key exchange Key fingerprint = 90 5F 1D FD A6 7C 84 5E A9 D3 90 16 B2 44 C4 F3