I agree with Dylan (did I just say that?).
As far as OpenDNS is concerned, I can't see how it would be better than
using your own caching DNS (which I do) or your ISP's. OpenDNS would have
to go through the same ordeal as a local cache to resolve stuff the first
time it after which time it's cached. Generally popular sites (google,
microsoft, cbc, etc.) will already be in your ISPs cache when you hit it.
The more interesting part of OpenDNS was to block phishing sites. The
ability to blacklist such sites is a great idea but I don't think DNS is
the place to do it. I would do the filtering at the application layer
(an HTTP proxy/content filter such as squid).
It would be nice if there was a syndicated service to get phishing site
signatures (URLs or content patterns) and filter that. That would be a
service ISPs would probably be willing to pay for which is a real business
model. I'm not sure what the intent of OpenDNS is, they have no revenue
stream from their service unless they start blackmailing sites to be taken
off their blacklist like some of the e-mail RBLs do.
Received on Wed Jul 19 12:21:50 2006
This archive was generated by hypermail 2.1.8 : Fri Sep 08 2006 - 23:26:38 CST