Slashdot Mirror

← Back to Stories (view on slashdot.org)

Faster Updates for DNS Root Servers Arrive

Posted by ryuzaki0 on from the quicker-name-picker-upper dept.

Tee Emm writes "VeriSign's DNS Rapid Update notice period (as announced on NANOG mailing list) expires today. Beginning September 9, 2004 the SOA records of the .com and .net zones will be updated every 5 minutes instead of twice a day. The format of the serial number is also changing from the current YYYYMMDDNN to a new one that depicts the UTC time." We first mentioned this back in July, but it's finally launching now.

7 of 150 comments (clear)

  1. hmm, but is this really a good thing? by The+Pi-Guy · · Score: 5, Insightful

    as I understand it, this would allow for propogation of new domains to be completed faster. this is *theoretically* a good thing, but it means that applications cannot cache DNS as effectively for nonexistant domains. this may end up causing a *lot* heavier load on the root DNS servers. much as we'd all love that functionality (who doesn't want to see their new domain a few minutes after they buy it?), there was a reason why they designed it the way they did.

    1. Re:hmm, but is this really a good thing? by fingon · · Score: 3, Insightful

      It's not very good thing. At least compliant DNS implementations will be doing 144x as much traffic with them as before (assuming infinite load; of course, in practise they will have bit less load).

      I don't see the point myself, domains are not supposed to change every minute anyway.

      --
      -- pending
    2. Re:hmm, but is this really a good thing? by ewithrow · · Score: 4, Insightful

      DNS was designed in the lat 70's, with RFC's appearing in the early 80's. The computational power today is vastly greater than what the routers of the 80's could contend with. I'm sure they would not implement this change if they had not thoroughly outweighed the costs and benefits.

      Oh wait, VeriSign? We're all doomed.

      --
      http://almostsmart.com
    3. Re:hmm, but is this really a good thing? by LostCluster · · Score: 3, Insightful

      This will be a Good Thing(TM) if the DNS root servers can handle the load. Of course, if they can't it'll have to go in the Bad Idea(TM) file.

      The key thing comes down to if we can trust VeriSign to be doing their homework correctly. VeriSign's a very funny company to think about because their entire product line is based on encryption and ID services that define VeriSign as a root of trust... if you don't trust VeriSign to be an honest actor, practically everything they do becomes worthless.

      It's so hard to get trust-based systems to work these days...

  2. Cool.... by Eggplant62 · · Score: 4, Insightful

    Now spammers can rotate through domains faster than ever before!!

  3. Fifteen minutes? by semaj · · Score: 4, Insightful
    From the linked NANOG posting:
    "At the same time, we will also change the "minimum" value in the .com and .net SOA records from its current value of 86400 seconds (one day) to 900 seconds (15 minutes). This change brings this value in line with the widely implemented negative caching semantics defined in Section 4 of RFC 2308."
    Doesn't that mean they're updating every fifteen minutes, not every five?
    --
    Meep meep
  4. This has no effect by warrax_666 · · Score: 4, Insightful

    on how many domains a spammer can register over time -- for much the same reason that you can still have huge bandwidth even if your latency is crap. It's just a question of reducing the initial delay from registration to activation.

    --
    HAND.