Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Learning DNS in 10 years

Avatar for Julia Evans Julia Evans
February 01, 2023
Technology
0
180

Learning DNS in 10 years

From RubyConf Mini 2022

Avatar for Julia Evans

Julia Evans

February 01, 2023
Tweet

More Decks by Julia Evans

See All by Julia Evans
Blogging myths
Avatar for Julia Evans jvns
0
3.3k
High Reliability Infrastructure migrations
Avatar for Julia Evans jvns
10
13k
Building a Ruby profiler
Avatar for Julia Evans jvns
2
380
Build impossible programs
Avatar for Julia Evans jvns
23
94k
So you want to be a wizard
Avatar for Julia Evans jvns
25
25k
Learning systems programming with Rust
Avatar for Julia Evans jvns
14
7.9k
Systems programming is for everyone
Avatar for Julia Evans jvns
13
3.1k
How to read your computer's mind
Avatar for Julia Evans jvns
6
780
Why I ❤ Rust
Avatar for Julia Evans jvns
50
54k

Other Decks in Technology

See All in Technology
空間を設計する力を考える / 20251004 Naoki Takahashi
Avatar for SHIFT EVOLVE shift_evolve
PRO
3
330
Azure SynapseからAzure Databricksへ 移行してわかった新時代のコスト問題!?
Avatar for Databricks Japan databricksjapan
0
140
職種別ミートアップで社内から盛り上げる アウトプット文化の醸成と関係強化/ #DevRelKaigi
Avatar for Ichiro Nishiuma nishiuma
2
130
多様な事業ドメインのクリエイターへ 価値を届けるための営みについて
Avatar for massyuu massyuu
0
110
FastAPIの魔法をgRPC/Connect RPCへ
Avatar for MonotaRO monotaro
PRO
1
730
業務自動化プラットフォーム Google Agentspace に入門してみる #devio2025
Avatar for maroon1st maroon1st
0
190
OCI Network Firewall 概要
Avatar for oracle4engineer oracle4engineer
PRO
1
7.8k
生成AIを活用したZennの取り組み事例
Avatar for igarashi ryosukeigarashi
0
200
「Verify with Wallet API」を アプリに導入するために
Avatar for hinakko hinakko
1
230
コンテキストエンジニアリングとは? 考え方と応用方法
Avatar for ファインディ株式会社(イベント資料アップ用) findy_eventslides
4
890
Goに育てられ開発者向けセキュリティ事業を立ち上げた僕が今向き合う、AI × セキュリティの最前線 / Go Conference 2025
Avatar for GMO Flatt Security flatt_security
0
350
pprof vs runtime/trace (FlightRecorder)
Avatar for task4233 task4233
0
160

Featured

See All Featured
Imperfection Machines: The Place of Print at Facebook
Avatar for Scott Boms scottboms
269
13k
Testing 201, or: Great Expectations
Avatar for Joseph Mastey jmmastey
45
7.7k
Art, The Web, and Tiny UX
Avatar for Lynn Fisher lynnandtonic
303
21k
JavaScript: Past, Present, and Future - NDC Porto 2020
Avatar for David Neal reverentgeek
52
5.6k
Chrome DevTools: State of the Union 2024 - Debugging React & Beyond
Avatar for Addy Osmani addyosmani
7
890
Into the Great Unknown - MozCon
Avatar for Noah Learner thekraken
40
2.1k
A Tale of Four Properties
Avatar for Chris Coyier chriscoyier
160
23k
Building an army of robots
Avatar for Kyle Neath kneath
306
46k
Practical Tips for Bootstrapping Information Extraction Pipelines
Avatar for Matthew Honnibal honnibal
PRO
23
1.5k
Product Roadmaps are Hard
Avatar for C. Todd Lombardo iamctodd
PRO
54
11k
How to train your dragon (web standard)
Avatar for Monica Dinculescu notwaldorf
96
6.3k
Designing Experiences People Love
Avatar for Jonathan Moore moore
142
24k

Transcript

  1. None
  2. None
  3. None
  4. None
  5. None
  6. None
  7. None

  8. notice when you're confused read the specification do experiments spy

    on it what's DNS? implement your own terrible version
  9. None
  10. None
  11. None
  12. None
  13. None

  14. notice when you're confused read the specification do experiments spy

    on it what's DNS? implement your own terrible version
  15. None
  16. None

  17. $ dig example.com example.com. 86400 IN A 93.184.216.34

  18. $ dig example.com example.com. 86400 IN A 93.184.216.34

  19. +noall +answer .digrc

  20. None
  21. None
  22. None
  23. None
  24. None

  25. browser resolver authoritative nameservers DNS query DNS query where's example.com?

    where's example.com? 93.184.216.34! 93.184.216.34!

  26. resolver browser what's the IP for example.com? hmm, I'll look

    in my cache...
  27. None
  28. None
  29. None
  30. None
  31. None
  32. None
  33. None

  34. browser resolver authoritative nameservers DNS query DNS query where's new.jvns.ca?

    where's new.jvns.ca? NXDOMAIN NXDOMAIN
  35. None
  36. None
  37. None

  38. “The TTL of this record is set from the minimum

    of the MINIMUM field of the SOA record and the TTL of the SOA itself, and indicates how long a resolver may cache the negative answer.”
  39. None

  40. $ dig +all new.jvns.ca ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN,

    id: 23308 [redacted] ;; AUTHORITY SECTION: jvns.ca. 10800 IN SOA ns1.gandi.net. hostmaster.gandi.net. 1662903879 10800 3600 604800 10800
  41. None
  42. None
  43. None
  44. None
  45. None
  46. None
  47. None
  48. None

  49. browser resolver authoritative nameservers DNS query DNS query where's example.com?

    where's example.com? 93.184.216.34! 93.184.216.34!
  50. None
  51. None
  52. None
  53. None

  54. require 'socket' sock = UDPSocket.new sock.bind('0.0.0.0', 0) sock.connect('8.8.8.8', 53)

  55. None

  56. hex_string = "b9620100000100..." bytes = [hex_string].pack('H*') sock.send(bytes, 0)

  57. b96201000001000000000000 076578616d706c6503636f6d0000010001

  58. b96201000001000000000000 076578616d706c6503636f6d0000010001

  59. b96201000001000000000000

  60. def make_question_header(query_id) # id, flags, num questions, num answers, ...

    [query_id, 0x0100, 0x0001, 0x0000, 0x0000, 0x0000] .pack('nnnnnn') end

  61. b96201000001000000000000 076578616d706c6503636f6d0000010001

  62. 076578616d706c6503636f6d0000010001 7 e x a m p l e 3

    c o m 0 1 1

  63. def encode_domain_name(domain) domain.split('.') .map { |x| x.length.chr + x }

    .join + "\0" end example.com 7example3com0

  64. def make_dns_query(domain, type) query_id = rand(65535) header = make_question_header(query_id) question

    = encode_domain_name(domain) + [type, 1].pack('nn') header + question end
  65. None
  66. None
  67. None

  68. notice when you're confused read the specification do experiments spy

    on it implement your own terrible version
  69. None