Re: Reality Check and Ideas

Brian Onn (onn nospam at tibco.com)
Wed, 10 Mar 1999 11:46:38 -0800

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Justin R. Erenkrantz: "RE: Using DNS examples"
Previous message: Martin Nilsson: "Archive"
Maybe in reply to: Tim P. Gerla: "Reality Check and Ideas"

This is a multi-part message in MIME format.
--------------C39224A6AA7A0374F0B699D5
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit

This was my point exactly, in an earlier message, being behind a corporate
firewall myself.

DNS has it's merits as the storage, transport and replication facility. There
are clients that exist to access it, it's free, all those good things. It's
not a good DB in general ("give me all the Rock albums, from 1967-1990, by the
Rolling stones") but I don't think this is a design goal of the cd index
database, anyway.

We haven't really talked much about LDAP. It has replication for free too, and
it's probably an equally or better suited wheel to re-use for this purpose than
DNS is. I wholeheartedly agree with Alan Cox that we should not re-invent any
database distribution or replication protocols to support this cause, but let's
not limit ourselves to DNS. Neither DNS nor LDAP protocols are generally
passed through corporate firewalls, so no matter what the underlying database
and distribution mechanism is, the access protocol, I believe, should always be
HTTP in order to make it universally accepted.

Brian

"Gary D. Foster" wrote:

> >>>>> "r" == rstad <Ragnar> writes:
>
> r> A firewall that blocks DNS traffic would have to have some
> r> relaying - if not http would be useless, right!
>
> You're missing a vital element here.
>
> I'm sitting at my desk... I have no access to outside DNS
> information. I can go to my webproxy and browse outside... but that's
> because the web proxy is configured to use outside DNS sources. That
> does me absolutely no good on my desktop and if it requires installing
> a separate proxy on the firewall or a separate service to gate
> protocols it's going to fall flat on it's face.
>
> r> I can't see why DNS-relaying should be a problem.
>
> Then you obviously don't sit behind the same type of corporate
> firewall that thousands of us do.

--------------C39224A6AA7A0374F0B699D5
Content-Type: text/x-vcard; charset=us-ascii;
name="onn.vcf"
Content-Transfer-Encoding: 7bit
Content-Description: Card for Brian Onn
Content-Disposition: attachment;
filename="onn.vcf"

begin:vcard
n:Onn;Brian
tel;fax:(650) 846-500-
tel;home:(650) 312-8696
tel;work:(650) 846-5049
x-mozilla-html:TRUE
url:http://www.tibco.com
org:TIBCO Software Inc
adr:;;3165 Porter Drive;Palo Alto;CA;94304;USA
version:2.1
email;internet:onn nospam at tibco.com
fn:Brian Onn
end:vcard

--------------C39224A6AA7A0374F0B699D5--

Next message: Justin R. Erenkrantz: "RE: Using DNS examples"
Previous message: Martin Nilsson: "Archive"
Maybe in reply to: Tim P. Gerla: "Reality Check and Ideas"