The AFNIC would like to draw the attention on the recent RFC 4924
publication titled “Reflections on Internet Transparency”.
This RFC is mostly dedicated to remind how it is important not to prejudge usage and applications: The Internet must remain transparent, meaning that
all information units (IP packets) should be handled in the same way, without favouring or counteracting some applications. This neutrality allowed
and will allow to spread new innovations rapidly.
The AFNIC wishes to particularly underline the 2.5.2 section of the RFC: “Namespace Mangling” that directly concerns its main activity.
This section describes the dangers of modifying the DNS answers sent by the servers. For instance by replacing a negative answer (example: Code
NXDOMAIN : No such domain) by another ready-built answer, for example, the IP address of a web server administered by a third party (even if
this web server claims to give a relevant service or information).
To make an analogy on the extent of this modification, it would be like having your Post Office change the recipient’s address of the letter you have sent.
The intermediates operating these types of manipulations impose their vision and go against a basic principle of the DNS, the faculty for
each holder to choose the rules of configuration that applies to all the names situated under his domain.
These practices violate security protocols such as DNSsec. They also make DNS problems more difficult to solve as the answers given by the
name servers are completly reworked and altered.
This problem is therefore very similar to the wildcards in Top Level Domains (TLDs), on which the AFNIC had already
commented (see the news posted on the 18th of September 2003).
These manipulations should never be imposed to Internet users.
Note on RFCs
RFCs (Request for Comments), like RFC 4924 cited here, are texts describing technical norms of the Internet as well as its achitecture,
its principles and various other practical questions.
This particular RFC was written and approved by the IAB (Internet Architecture Board),
the organism that supervises the Internet’s achitectural development.
List of RFCs in relation to the AFNIC’s activity (DNS, IPv6, DNSsec, ENUM, etc..)
About the AFNIC
(Association Française pour le Nommage Internet en Coopération)
Non-profit organization, the AFNIC is in charge of the administrative and technical management of the .fr (France) and .re (Reunion Island) Internet domain names.
The AFNIC brings together public and private members: representatives from the French government, Internet users and Internet Service Providers.