Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Learning DNS in 10 years

Avatar for Julia Evans Julia Evans
February 01, 2023
Technology
0
190

Learning DNS in 10 years

From RubyConf Mini 2022

Avatar for Julia Evans

Julia Evans

February 01, 2023
Tweet

More Decks by Julia Evans

See All by Julia Evans
Blogging myths
Avatar for Julia Evans jvns
0
3.4k
High Reliability Infrastructure migrations
Avatar for Julia Evans jvns
10
13k
Building a Ruby profiler
Avatar for Julia Evans jvns
2
390
Build impossible programs
Avatar for Julia Evans jvns
23
94k
So you want to be a wizard
Avatar for Julia Evans jvns
25
25k
Learning systems programming with Rust
Avatar for Julia Evans jvns
14
7.9k
Systems programming is for everyone
Avatar for Julia Evans jvns
13
3.1k
How to read your computer's mind
Avatar for Julia Evans jvns
6
780
Why I ❤ Rust
Avatar for Julia Evans jvns
50
54k

Other Decks in Technology

See All in Technology
Retrospectiveを振り返ろう
Avatar for なかしょ nakasho
0
110
AWS DMS で SQL Server を移行してみた/aws-dms-sql-server-migration
Avatar for emi emiki
0
240
AIプロダクトのプロンプト実践テクニック / Practical Techniques for AI Product Prompts
Avatar for Jumpei Sakatsu saka2jp
0
110
可観測性は開発環境から、開発環境にもオブザーバビリティ導入のススメ
Avatar for LayerX layerx
PRO
0
310
会社を支える Pythonという言語戦略 ~なぜPythonを主要言語にしているのか?~
Avatar for curekoshimizu curekoshimizu
3
670
JSConf JPのwebsiteをGatsbyからNext.jsに移行した話 - Next.jsの多言語静的サイトと課題
Avatar for Leko leko
2
190
ゼロコード計装導入後のカスタム計装でさらに可観測性を高めよう
Avatar for SansanTech sansantech
PRO
1
440
QA業務を変える(!?)AIを併用した不具合分析の実践
Avatar for ma2ri__ ma2ri
0
140
様々なファイルシステム
Avatar for Satoru Takeuchi sat
PRO
0
240
Dylib Hijacking on macOS: Dead or Alive?
Avatar for Patrick Wardle patrickwardle
0
470
CNCFの視点で捉えるPlatform Engineering - 最新動向と展望 / Platform Engineering from the CNCF Perspective
Avatar for hhiroshell hhiroshell
0
140
From Natural Language to K8s Operations: The MCP Architecture and Practice of kubectl-ai
Avatar for Bo-Yi Wu appleboy
0
220

Featured

See All Featured
Music & Morning Musume
Avatar for Bryan Veloso bryan
46
6.9k
GraphQLの誤解/rethinking-graphql
Avatar for sonatard sonatard
73
11k
For a Future-Friendly Web
Avatar for Brad Frost brad_frost
180
10k
Site-Speed That Sticks
Avatar for Harry Roberts csswizardry
13
930
StorybookのUI Testing Handbookを読んだ
Avatar for Shingo Yamazaki zakiyama
31
6.2k
The Art of Programming - Codeland 2020
Avatar for Erika Heidi erikaheidi
56
14k
Building Adaptive Systems
Avatar for Chris Keathley keathley
44
2.8k
Code Review Best Practice
Avatar for Trisha Gee trishagee
72
19k
Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything
Avatar for Michelle Schulp Hunt marktimemedia
31
2.6k
Fight the Zombie Pattern Library - RWD Summit 2016
Avatar for Marcelo Somers marcelosomers
234
17k
Improving Core Web Vitals using Speculation Rules API
Avatar for Sergey Chernyshev sergeychernyshev
21
1.2k
"I'm Feeling Lucky" - Building Great Search Experiences for Today's Users (#IAC19)
Avatar for Dan Newman danielanewman
230
22k

Transcript

  1. None
  2. None
  3. None
  4. None
  5. None
  6. None
  7. None

  8. notice when you're confused read the specification do experiments spy

    on it what's DNS? implement your own terrible version
  9. None
  10. None
  11. None
  12. None
  13. None

  14. notice when you're confused read the specification do experiments spy

    on it what's DNS? implement your own terrible version
  15. None
  16. None

  17. $ dig example.com example.com. 86400 IN A 93.184.216.34

  18. $ dig example.com example.com. 86400 IN A 93.184.216.34

  19. +noall +answer .digrc

  20. None
  21. None
  22. None
  23. None
  24. None

  25. browser resolver authoritative nameservers DNS query DNS query where's example.com?

    where's example.com? 93.184.216.34! 93.184.216.34!

  26. resolver browser what's the IP for example.com? hmm, I'll look

    in my cache...
  27. None
  28. None
  29. None
  30. None
  31. None
  32. None
  33. None

  34. browser resolver authoritative nameservers DNS query DNS query where's new.jvns.ca?

    where's new.jvns.ca? NXDOMAIN NXDOMAIN
  35. None
  36. None
  37. None

  38. “The TTL of this record is set from the minimum

    of the MINIMUM field of the SOA record and the TTL of the SOA itself, and indicates how long a resolver may cache the negative answer.”
  39. None

  40. $ dig +all new.jvns.ca ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN,

    id: 23308 [redacted] ;; AUTHORITY SECTION: jvns.ca. 10800 IN SOA ns1.gandi.net. hostmaster.gandi.net. 1662903879 10800 3600 604800 10800
  41. None
  42. None
  43. None
  44. None
  45. None
  46. None
  47. None
  48. None

  49. browser resolver authoritative nameservers DNS query DNS query where's example.com?

    where's example.com? 93.184.216.34! 93.184.216.34!
  50. None
  51. None
  52. None
  53. None

  54. require 'socket' sock = UDPSocket.new sock.bind('0.0.0.0', 0) sock.connect('8.8.8.8', 53)

  55. None

  56. hex_string = "b9620100000100..." bytes = [hex_string].pack('H*') sock.send(bytes, 0)

  57. b96201000001000000000000 076578616d706c6503636f6d0000010001

  58. b96201000001000000000000 076578616d706c6503636f6d0000010001

  59. b96201000001000000000000

  60. def make_question_header(query_id) # id, flags, num questions, num answers, ...

    [query_id, 0x0100, 0x0001, 0x0000, 0x0000, 0x0000] .pack('nnnnnn') end

  61. b96201000001000000000000 076578616d706c6503636f6d0000010001

  62. 076578616d706c6503636f6d0000010001 7 e x a m p l e 3

    c o m 0 1 1

  63. def encode_domain_name(domain) domain.split('.') .map { |x| x.length.chr + x }

    .join + "\0" end example.com 7example3com0

  64. def make_dns_query(domain, type) query_id = rand(65535) header = make_question_header(query_id) question

    = encode_domain_name(domain) + [type, 1].pack('nn') header + question end
  65. None
  66. None
  67. None

  68. notice when you're confused read the specification do experiments spy

    on it implement your own terrible version
  69. None