Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Learning DNS in 10 years

Avatar for Julia Evans Julia Evans
February 01, 2023
Technology
0
210

Learning DNS in 10 years

From RubyConf Mini 2022

Avatar for Julia Evans

Julia Evans

February 01, 2023
Tweet

More Decks by Julia Evans

See All by Julia Evans
Blogging myths
Avatar for Julia Evans jvns
0
3.5k
High Reliability Infrastructure migrations
Avatar for Julia Evans jvns
10
13k
Building a Ruby profiler
Avatar for Julia Evans jvns
2
410
Build impossible programs
Avatar for Julia Evans jvns
23
94k
So you want to be a wizard
Avatar for Julia Evans jvns
25
25k
Learning systems programming with Rust
Avatar for Julia Evans jvns
14
8k
Systems programming is for everyone
Avatar for Julia Evans jvns
13
3.1k
How to read your computer's mind
Avatar for Julia Evans jvns
6
790
Why I ❤ Rust
Avatar for Julia Evans jvns
50
54k

Other Decks in Technology

See All in Technology
インフラエンジニア必見!Kubernetesを用いたクラウドネイティブ設計ポイント大全
Avatar for 高棹大樹 daitak
1
370
ファインディの横断SREがTakumi byGMOと取り組む、セキュリティと開発スピードの両立
Avatar for adachi.ryo rvirus0817
1
1.4k
Introduction to Sansan, inc / Sansan Global Development Center, Inc.
Avatar for Sansan, Inc. sansan33
PRO
0
3k
Introduction to Sansan for Engineers / エンジニア向け会社紹介
Avatar for Sansan, Inc. sansan33
PRO
6
68k
SREのプラクティスを用いた3領域同時 マネジメントへの挑戦 〜SRE・情シス・セキュリティを統合した チーム運営術〜
Avatar for coconala_engineer coconala_engineer
2
660
仕様書駆動AI開発の実践: Issue→Skill→PRテンプレで 再現性を作る
Avatar for 西岡 賢一郎 (Kenichiro Nishioka) knishioka
2
670
超初心者からでも大丈夫!オープンソース半導体の楽しみ方〜今こそ!オレオレチップをつくろう〜
Avatar for Yamada3 keropiyo
0
110
SRE Enabling戦記 - 急成長する組織にSREを浸透させる戦いの歴史
Avatar for Masaki Ishigaki markie1009
0
120
AIエージェントを開発しよう!-AgentCore活用の勘所-
Avatar for YukiOgawa yukiogawa
0
170
顧客の言葉を、そのまま信じない勇気
Avatar for yamatai12 yamatai1212
1
360
Oracle Cloud Observability and Management Platform - OCI 運用監視サービス概要 -
Avatar for oracle4engineer oracle4engineer
PRO
2
14k
Context Engineeringが企業で不可欠になる理由
Avatar for Hirosato Gamo hirosatogamo
PRO
3
600

Featured

See All Featured
Let's Do A Bunch of Simple Stuff to Make Websites Faster
Avatar for Chris Coyier chriscoyier
508
140k
Docker and Python
Avatar for Tania Allard trallard
47
3.7k
Marketing to machines
Avatar for Jono Alderson jonoalderson
1
4.6k
Lightning talk: Run Django tests with GitHub Actions
Avatar for Sarah Abderemane sabderemane
0
120
Tell your own story through comics
Avatar for letsgokoyo letsgokoyo
1
810
Intergalactic Javascript Robots from Outer Space
Avatar for Vicent Martí tanoku
273
27k
Keith and Marios Guide to Fast Websites
Avatar for Keith Pitt keithpitt
413
23k
GraphQLとの向き合い方2022年版
Avatar for Yosuke Kurami quramy
50
14k
How to Think Like a Performance Engineer
Avatar for Harry Roberts csswizardry
28
2.4k
So, you think you're a good person
Avatar for Per Axbom axbom
PRO
2
1.9k
Building a A Zero-Code AI SEO Workflow
Avatar for Ian Lurie portentint
PRO
0
310
Skip the Path - Find Your Career Trail
Avatar for Mark Kilby mkilby
0
57

Transcript

  1. None
  2. None
  3. None
  4. None
  5. None
  6. None
  7. None

  8. notice when you're confused read the specification do experiments spy

    on it what's DNS? implement your own terrible version
  9. None
  10. None
  11. None
  12. None
  13. None

  14. notice when you're confused read the specification do experiments spy

    on it what's DNS? implement your own terrible version
  15. None
  16. None

  17. $ dig example.com example.com. 86400 IN A 93.184.216.34

  18. $ dig example.com example.com. 86400 IN A 93.184.216.34

  19. +noall +answer .digrc

  20. None
  21. None
  22. None
  23. None
  24. None

  25. browser resolver authoritative nameservers DNS query DNS query where's example.com?

    where's example.com? 93.184.216.34! 93.184.216.34!

  26. resolver browser what's the IP for example.com? hmm, I'll look

    in my cache...
  27. None
  28. None
  29. None
  30. None
  31. None
  32. None
  33. None

  34. browser resolver authoritative nameservers DNS query DNS query where's new.jvns.ca?

    where's new.jvns.ca? NXDOMAIN NXDOMAIN
  35. None
  36. None
  37. None

  38. “The TTL of this record is set from the minimum

    of the MINIMUM field of the SOA record and the TTL of the SOA itself, and indicates how long a resolver may cache the negative answer.”
  39. None

  40. $ dig +all new.jvns.ca ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN,

    id: 23308 [redacted] ;; AUTHORITY SECTION: jvns.ca. 10800 IN SOA ns1.gandi.net. hostmaster.gandi.net. 1662903879 10800 3600 604800 10800
  41. None
  42. None
  43. None
  44. None
  45. None
  46. None
  47. None
  48. None

  49. browser resolver authoritative nameservers DNS query DNS query where's example.com?

    where's example.com? 93.184.216.34! 93.184.216.34!
  50. None
  51. None
  52. None
  53. None

  54. require 'socket' sock = UDPSocket.new sock.bind('0.0.0.0', 0) sock.connect('8.8.8.8', 53)

  55. None

  56. hex_string = "b9620100000100..." bytes = [hex_string].pack('H*') sock.send(bytes, 0)

  57. b96201000001000000000000 076578616d706c6503636f6d0000010001

  58. b96201000001000000000000 076578616d706c6503636f6d0000010001

  59. b96201000001000000000000

  60. def make_question_header(query_id) # id, flags, num questions, num answers, ...

    [query_id, 0x0100, 0x0001, 0x0000, 0x0000, 0x0000] .pack('nnnnnn') end

  61. b96201000001000000000000 076578616d706c6503636f6d0000010001

  62. 076578616d706c6503636f6d0000010001 7 e x a m p l e 3

    c o m 0 1 1

  63. def encode_domain_name(domain) domain.split('.') .map { |x| x.length.chr + x }

    .join + "\0" end example.com 7example3com0

  64. def make_dns_query(domain, type) query_id = rand(65535) header = make_question_header(query_id) question

    = encode_domain_name(domain) + [type, 1].pack('nn') header + question end
  65. None
  66. None
  67. None

  68. notice when you're confused read the specification do experiments spy

    on it implement your own terrible version
  69. None