[AusNOG] How you can help prevent DNS spoofing attempts from succeeding

[Go Group - Go Pages - Go Ogle - Go Live 12/12/25]

G'Day Mark

I have been working with LANs/WANs since the early 90's. I started with
banyan vines & LANtastic , NETware & more recently IP sockets programming &
I feel this is too complicated for me being big into KISS - sorry to be so
blunt :)

KISS for me is I made a change to my email addresses 25+ years ago &
started using sub-domains when I notice that spammers only tried to guess
the left of the "@' ( Mailbox name ) & never the sub-domains & due to this
have not had a spam msg. to any of my self hosted domains in ~20 years, but
I get spam to the gmail accounts, for me this is KISS in action :(

On my current project Ogle the world's 1st GEO Results Engin. we made some
really bad assumptions.

 - We thought the DNS root servers would have domains that are prefixed
with numbers 1st eg.http://byronbay.2o.au/ ( NSW Go Pages )  but
numbers are after letters in DNS root server collating sequence.
 - We thought the US bug ( ! big ) tech would leave us alone when they
realised we had designed a system only for Australians & were are not going
to charge to use our AI to generate the Go Pages
 - We thought we could stand up our chrome extension, DNS server app that
allow Australia's users to have a list of .au domains & the server would
return a list IPs & not even attempt to resolve, so much faster

>From my experience as a team member managing the most popular web site in
southern hemisphere I believe we need to start thinking about having a
"elevated" .au domain res. system

I think Australia needs ITs own root servers & a method to allow for 'No
need to resolve' domain list because nothing I have seen so far when IT
comes to "DNS Security" is anything but an oxymoron.

Australia is easily the richest country in the world we are about to give
the .us half a trillion dollars hoping we get AUKUS Subs, we give billions
of dollars in GAS to .jp who sell IT for a profit, we subsidise GAS to .cn,
every Australian has a superannuation account & hackers outside Australia
are incredibly motivated to steal this cash, our banks ( I have worked for
2 of them ) regularly let OS criminals open bank accounts & Westpac was
convicted of 23 million breaches of anti-money laundering & paid a 1.3
billion penalty.

I think this is only going to get worse :(

Any1 interested in a Australian only WAN

Ken G.
Go G.

BTW - I'm under no illusion this is not going to be easy, especially when
you think about TOR exits etc. etc.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ausnog.net/pipermail/ausnog/attachments/20250814/6dda0a9a/attachment.htm>