The random nameservers are only accidentally a defense against this attack. They... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		jsmthrowaway on Aug 26, 2016 \| parent \| context \| favorite \| on: Taking Over DigitalOcean Domains via a Lax Domain ... The random nameservers are only accidentally a defense against this attack. They're avoiding SPOFs, including TLDs -- you never receive nameservers in the same TLD for example. It's a reliability and scaling consideration with this accidental benefit. Most admins don't think about a complete TLD failure. Amazon did.

tszming on Aug 26, 2016 [–]

>> accidental benefit.

Agree

>> Most admins don't think about a complete TLD failure. Amazon did.

I think companies such as Google or Facebook did think that before, but I am not sure why they didn't follow this trick.

Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact