[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Nxdomain redirect revenue

Subject: Nxdomain redirect revenue
From: rbf+nanog at panix.com (Brett Frankenberger)
Date: Wed, 28 Sep 2011 06:42:14 -0500
In-reply-to: <[email protected]>
References: <CAD6AjGQpqTMP9bKAMz4HmWcH_GOA7pWrFqntteqWj1YCBPZgUg@mail.gmail.com> <[email protected]> <[email protected]> <CAAAwwbWYQfpoHEReiyamy8fO0g0Edh=1+1usKkMk22PWO+i=Pg@mail.gmail.com> <CAL9jLaaOdE3djf6UnYGwdBnuGRnQ3iMbc+QAMT4nYtKL5LDhdg@mail.gmail.com> <CAAAwwbWSRk_gtngLRg=nQHSQRGG80J__DY6fUhs_aHcxO5bMaw@mail.gmail.com> <CAE4VuKFASMmaNnDexDfF_8YiEp8dmL6vE+4Y2Cmx3X38GqTtjA@mail.gmail.com> <CAAAwwbVLmh+MsXU-axOy=twz+oWvszyZ3O8n-bMqpna4tR7Xtg@mail.gmail.com> <[email protected]>

On Tue, Sep 27, 2011 at 04:09:03PM -0700, Owen DeLong wrote:
> 
> > Yes, it is realistic to expect every mom-and-pop posting a personal
> > web site to utilize a provider that implements SNI,  and the sooner
> > they do it.
> 
> No, it isn't because it requires you to send the domain portion of the URL
> in clear text and it may be that you don't necessarily want to disclose even
> that much information about your browsing to the public.

That's what happens without SNI.  Without SNI, the IP address of the
server is sent in the clear; anyone who captures that traffic knows the
IP address, and, without SNI, anyone who want s to translate the IP
address to a domain name need only connect to the server and see what
certificate is presented.

     -- Brett

References:
- Nxdomain redirect revenue
  - From: cb.list6 at gmail.com (Cameron Byrne)
- Nxdomain redirect revenue
  - From: fweimer at bfk.de (Florian Weimer)
- Nxdomain redirect revenue
  - From: william.allen.simpson at gmail.com (William Allen Simpson)
- Nxdomain redirect revenue
  - From: mysidia at gmail.com (Jimmy Hess)
- Nxdomain redirect revenue
  - From: morrowc.lists at gmail.com (Christopher Morrow)
- Nxdomain redirect revenue
  - From: mysidia at gmail.com (Jimmy Hess)
- Nxdomain redirect revenue
  - From: dave at mvn.net (David E. Smith)
- Nxdomain redirect revenue
  - From: mysidia at gmail.com (Jimmy Hess)
- Nxdomain redirect revenue
  - From: owen at delong.com (Owen DeLong)

Prev by Date: "general badness" AS-based reputation system
Next by Date: Environmental monitoring options
Previous by thread: Nxdomain redirect revenue
Next by thread: Nxdomain redirect revenue
Index(es):
- Date
- Thread