Munin, Keeper of LoreApr 24, 2017

DNS is dangerous knowledge to have.

Yes, it's a wonderful, amazing way to solve many problems.

Unfortunately, once you know how it works, you begin to realize how fragile the underpinnings for a lot of other things are.

Worse, once -other- people realize you know it, you get their well-meaning plans to do things that, yes, -can- work, but really oughtn't to see the light of day.

Show threadMaiyannah Bishop
@munin Remember when people were putting a metric shitton of oob non-standard stuff in TXT records?
Apr 24, 2017 at 5:11amWeb
Show threadMunin, Keeper of LoreApr 24, 2017
@maiyannah "Were"?
Show threadMaiyannah BishopApr 24, 2017
@munin It's not as bad as it once was.
Show threadMunin, Keeper of LoreApr 24, 2017
@maiyannah No; nowadays they just abuse subdomains to try to exfil information using base32-encoded queries.
Show threadMaiyannah BishopApr 24, 2017
@munin SPF at least pretends to have it's own proper record now.
Show threadterribleplanApr 24, 2017

@maiyannah @munin "ultimately the working group concluded that significant migration to the SPF RR type in the foreseeable future was very unlikely and that the best solution for resolving this interoperability issue was to drop support for the SPF RR type from SPF version 1."

https://tools.ietf.org/html/rfc7208#section-3.1

Show threadMaiyannah BishopApr 24, 2017
@terribleplan @munin "Pretend" was the operative word there.
Show thread🏴‍☠️🏴‍☠️KODO🏴‍☠️🏴‍☠️Apr 24, 2017
@maiyannah I still do that heh