Inside ICANNWatch  
Submit Story
Lost Password
Site Messages
Top 10 Lists
Latest Comments
Search by topic

Our Mission
ICANN for Beginners
About Us
How To Use This Site
Slash Tech Info
Link to Us
Write to Us

  Useful ICANN sites  
  • ICANN itself
  • Bret Fausett's ICANN Blog
  • Internet Governance Project
  • UN Working Group on Internet Governance
  • Karl Auerbach web site
  • Müller-Maguhn home
  • UDRPinfo.com;
  • UDRPlaw.net;
  • CircleID;
  • LatinoamerICANN Project
  • ICB Tollfree News

  •   At Large Membership and Civil Society Participation in ICANN  
  • icannatlarge.com;
  • Noncommercial Users Constituency of ICANN
  • NAIS Project
  • ICANN At Large Study Committee Final Report
  • ICANN (non)Members page
  • ICANN Membership Election site

  • ICANN-Related Reading
    Browse ICANNWatch by Subject

    Ted Byfied
    - ICANN: Defending Our Precious Bodily Fluids
    - Ushering in Banality
    - ICANN! No U CANN't!
    - roving_reporter
    - DNS: A Short History and a Short Future

    David Farber
    - Overcoming ICANN (PFIR statement)

    A. Michael Froomkin
    - When We Say US™, We Mean It!
    - ICANN 2.0: Meet The New Boss
    - Habermas@ discourse.net: Toward a Critical Theory of Cyberspace
    - ICANN and Anti-Trust (with Mark Lemley)
    - Wrong Turn in Cyberspace: Using ICANN to Route Around the APA & the Constitution (html)
    - Form and Substance in Cyberspace
    - ICANN's "Uniform Dispute Resolution Policy"-- Causes and (Partial) Cures

    Milton Mueller
    - Ruling the Root
    - Success by Default: A New Profile of Domain Name Trademark Disputes under ICANN's UDRP
    - Dancing the Quango: ICANN as International Regulatory Regime
    - Goverments and Country Names: ICANN's Transformation into an Intergovernmental Regime
    - Competing DNS Roots: Creative Destruction or Just Plain Destruction?
    - Rough Justice: A Statistical Assessment of the UDRP
    - ICANN and Internet Governance

    David Post
    - Governing Cyberspace, or Where is James Madison When We Need Him?
    - The 'Unsettled Paradox': The Internet, the State, and the Consent of the Governed

    Jonathan Weinberg
    - Sitefinder and Internet Governance
    - ICANN, Internet Stability, and New Top Level Domains
    - Geeks and Greeks
    - ICANN and the Problem of Legitimacy

    Highlights of the ICANNWatch Archive
    (June 1999 - March 2001)

    This discussion has been archived. No new comments can be posted.
    How to Protect the DNS | Log in/Create an Account | Top | 7 comments | Search Discussion
    Click this button to post a comment to this story
    The options below will change how the comments display
    Check box to change your default comment view
    The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
    Re: How to Protect the DNS
    by Anonymous on Friday October 25 2002, @02:37PM (#9844)
    So make a local copy of the root zone once a week with ftp from internic.net or from one of the three or four root servers that permit zone transfers.

    Why do people think this is difficult, and hang all sorts of desperate "let my root zone go!" conspiracy fantasies around this supposed difficulty? It's something that would be easy for any ISP, and would leave only "priming queries" (those that occur when a nameserver starts and occasionally thereafter) hardwired to go to the roots.

    Keeping a current copy of the root in a local caching nameserver is trivial. It's keeping large, relatively dynamic TLDs current that takes all the effort and costs all the money.

    Meanwhile, the DNS root service is made up of 13 separate servers, many of which are actually multiple systems in multiple locations for resiliency. Over all it is dramatically better engineered and coordinated than most TLDs. Improvements can always be made, and should be, but the myth that the root servers are more fragile than the net itself or that their data is some kind of secret needs to be kept out of any rational discussion on this topic.
    [ Reply to This | Parent ]
    Re: How to Protect the DNS
    by Anonymous on Friday October 25 2002, @04:05PM (#9845)
    Don't forget that there are other kinds of disasters than some script kiddeez messin' with the root. There can be floods, fires, earthquakes - you know, the kinds of things mentioned in the Bible - and a community could be cut off from the TLD servers just as it is cut off from the root servers.

    If one can get a minimal DNS system working, it becomes much easier to cobble other things together and get the community up and running enough to start digging out from whatever it was that happened.

    We've had ice storms that have left us here cut off from the rest of the world for many days - it felt like weeks - our local infrastructure was OK, but we didn't have connectivity to the outside, so we had to work with IP addresses; the kind of kit being suggested would have helped us get going somewhat more quickly.
    [ Reply to This | Parent ]

    Search ICANNWatch.org:

    Privacy Policy: We will not knowingly give out your personal data -- other than identifying your postings in the way you direct by setting your configuration options -- without a court order. All logos and trademarks in this site are property of their respective owner. The comments are property of their posters, all the rest © 2001, 2002, 2003, 2004, 2005, 2006, 2007, 2008 by ICANNWatch.Org. This web site was made with Slashcode, a web portal system written in perl. Slashcode is Free Software released under the GNU/GPL license.
    You can syndicate our headlines in .rdf, .rss, or .xml. Domain registration services donated by DomainRegistry.com