V2EX = way to explore
V2EX 是一个关于分享和探索的地方
现在注册
已注册用户请  登录
luxin88
V2EX  ›  DNS

这是域名被污染吗?

  •  
  •   luxin88 · 2019-08-04 14:35:42 +08:00 · 6691 次点击
    这是一个创建于 1942 天前的主题,其中的信息可能已经有所发展或是发生改变。

    用 b 根解析 com 地址

    [root@localhost ~]# dig @b.root-servers.net com
    
    ; <<>> DiG 9.9.4-RedHat-9.9.4-74.el7_6.1 <<>> @b.root-servers.net com
    ; (1 server found)
    ;; global options: +cmd
    ;; Got answer:
    ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 29150
    ;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 13, ADDITIONAL: 27
    ;; WARNING: recursion requested but not available
    
    ;; OPT PSEUDOSECTION:
    ; EDNS: version: 0, flags:; udp: 4096
    ;; QUESTION SECTION:
    ;com.				IN	A
    
    ;; AUTHORITY SECTION:
    com.			172800	IN	NS	d.gtld-servers.net.
    com.			172800	IN	NS	i.gtld-servers.net.
    com.			172800	IN	NS	m.gtld-servers.net.
    com.			172800	IN	NS	f.gtld-servers.net.
    com.			172800	IN	NS	h.gtld-servers.net.
    com.			172800	IN	NS	a.gtld-servers.net.
    com.			172800	IN	NS	g.gtld-servers.net.
    com.			172800	IN	NS	e.gtld-servers.net.
    com.			172800	IN	NS	b.gtld-servers.net.
    com.			172800	IN	NS	j.gtld-servers.net.
    com.			172800	IN	NS	c.gtld-servers.net.
    com.			172800	IN	NS	l.gtld-servers.net.
    com.			172800	IN	NS	k.gtld-servers.net.
    
    ;; ADDITIONAL SECTION:
    a.gtld-servers.net.	172800	IN	A	192.5.6.30
    b.gtld-servers.net.	172800	IN	A	192.33.14.30
    c.gtld-servers.net.	172800	IN	A	192.26.92.30
    d.gtld-servers.net.	172800	IN	A	192.31.80.30
    e.gtld-servers.net.	172800	IN	A	192.12.94.30
    f.gtld-servers.net.	172800	IN	A	192.35.51.30
    g.gtld-servers.net.	172800	IN	A	192.42.93.30
    h.gtld-servers.net.	172800	IN	A	192.54.112.30
    i.gtld-servers.net.	172800	IN	A	192.43.172.30
    j.gtld-servers.net.	172800	IN	A	192.48.79.30
    k.gtld-servers.net.	172800	IN	A	192.52.178.30
    l.gtld-servers.net.	172800	IN	A	192.41.162.30
    m.gtld-servers.net.	172800	IN	A	192.55.83.30
    a.gtld-servers.net.	172800	IN	AAAA	2001:503:a83e::2:30
    b.gtld-servers.net.	172800	IN	AAAA	2001:503:231d::2:30
    c.gtld-servers.net.	172800	IN	AAAA	2001:503:83eb::30
    d.gtld-servers.net.	172800	IN	AAAA	2001:500:856e::30
    e.gtld-servers.net.	172800	IN	AAAA	2001:502:1ca1::30
    f.gtld-servers.net.	172800	IN	AAAA	2001:503:d414::30
    g.gtld-servers.net.	172800	IN	AAAA	2001:503:eea3::30
    h.gtld-servers.net.	172800	IN	AAAA	2001:502:8cc::30
    i.gtld-servers.net.	172800	IN	AAAA	2001:503:39c1::30
    j.gtld-servers.net.	172800	IN	AAAA	2001:502:7094::30
    k.gtld-servers.net.	172800	IN	AAAA	2001:503:d2d::30
    l.gtld-servers.net.	172800	IN	AAAA	2001:500:d937::30
    m.gtld-servers.net.	172800	IN	AAAA	2001:501:b1f9::30
    
    ;; Query time: 198 msec
    ;; SERVER: 199.9.14.201#53(199.9.14.201)
    ;; WHEN: Sun Aug 04 06:29:16 UTC 2019
    ;; MSG SIZE  rcvd: 828
    

    还是用 b 根解析 hdb.com

    [root@localhost ~]# dig @b.root-servers.net hdb.com
    
    ; <<>> DiG 9.9.4-RedHat-9.9.4-74.el7_6.1 <<>> @b.root-servers.net hdb.com
    ; (1 server found)
    ;; global options: +cmd
    ;; Got answer:
    ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 50917
    ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
    
    ;; QUESTION SECTION:
    ;hdb.com.			IN	A
    
    ;; ANSWER SECTION:
    hdb.com.		213	IN	A	31.13.85.1
    
    ;; Query time: 27 msec
    ;; SERVER: 199.9.14.201#53(199.9.14.201)
    ;; WHEN: Sun Aug 04 06:29:06 UTC 2019
    ;; MSG SIZE  rcvd: 41
    
    

    明显解析 hdb.com 结果是有问题的

    第 1 条附言  ·  2019-08-04 23:30:05 +08:00
    经过最终测试,从墙内解析,root-servers 使用 f 服务器是安全的,youtube 之类的域名都是可以的,并且 dig +tcp 都是没问题的,gtld 可能是因为没有国内镜像全军覆没
    4 条回复    2019-08-05 07:49:28 +08:00
    yexm0
        1
    yexm0  
       2019-08-04 14:54:02 +08:00
    是啊,鬼叫他用 dnspod 啊.这不就墙内墙外一起完蛋了
    txydhr
        2
    txydhr  
       2019-08-04 21:44:05 +08:00 via iPhone
    是的
    luxin88
        3
    luxin88  
    OP
       2019-08-04 22:56:30 +08:00
    @yexm0 但是墙内用运营商的 dns 或者用阿里的 腾讯的 114 的,都能正常解析,难道这些 dns 到 root-servers 走的都是梯子?
    txydhr
        4
    txydhr  
       2019-08-05 07:49:28 +08:00 via iPhone
    @luxin88 root server 有国内镜像
    关于   ·   帮助文档   ·   博客   ·   API   ·   FAQ   ·   实用小工具   ·   1434 人在线   最高记录 6679   ·     Select Language
    创意工作者们的社区
    World is powered by solitude
    VERSION: 3.9.8.5 · 22ms · UTC 17:19 · PVG 01:19 · LAX 09:19 · JFK 12:19
    Developed with CodeLauncher
    ♥ Do have faith in what you're doing.