Re: bezeqint customers should now be able to access ftp.cs.huji.il

[Stanislav Malyshev a.k.a Frodo]

YR>> It provides a better audit trail. It is trivial to setup PTR records, and

Just how better? Why PTR (which can be easily faked) is better than
IP, which determines uniquely the offending host?

As for triviality, many things are trivial to do and yet it is not the
reason to require people to do them.

YR>> DNS admins should be clued enough to know that their configuration must be
YR>> consistent. When all IP addresses have PTR records the admin can determine
YR>> more quickly the possibly offending ISP. Yes, I know, I could query RIPE,

That's bull. For a small pay I can talk my ISP into giving control of PTR
to my hands. Then I can setup my DNS to resolve all my IPs into
fsck.me.harder.com and now go and determine my ISP from that. If I was
smart enough to register harder.com on myself, you will never know who I
am from DNS records. On the contrary, IP blocks are assigned to ISPs and
by IP you _can_ determine my ISP very fast and efficiently.

YR>> but registrant information may not always lead to the desired person.

It will at least _always_ lead to my ISP, and at ISP, if it's cooperative,
you will find out who has bought the IP. If ISP is incooperative, reverse
DNS won't help you a bit anyway. They could just make reverse DNS to be
copy of the IP (most dialup providers do that, so you get
1.2.3.4.provider.net as reverse for 1.2.3.4) and you are back to square
one.

-- 
[EMAIL PROTECTED]      \/  There shall be counsels taken
Stanislav Malyshev      /\  Stronger than Morgul-spells
phone +972-3-9316425    /\              JRRT LotR.
http://sharat.co.il/frodo/      whois:!SM8333


=================================================================
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]