Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Learning DNS in 10 years

Sponsored · SiteGround - Reliable hosting with speed, security, and support you can count on.
Avatar for Julia Evans Julia Evans
February 01, 2023
Technology
0
210

Learning DNS in 10 years

From RubyConf Mini 2022

Avatar for Julia Evans

Julia Evans

February 01, 2023
Tweet

More Decks by Julia Evans

See All by Julia Evans
Blogging myths
Avatar for Julia Evans jvns
0
3.5k
High Reliability Infrastructure migrations
Avatar for Julia Evans jvns
10
13k
Building a Ruby profiler
Avatar for Julia Evans jvns
2
420
Build impossible programs
Avatar for Julia Evans jvns
23
94k
So you want to be a wizard
Avatar for Julia Evans jvns
25
25k
Learning systems programming with Rust
Avatar for Julia Evans jvns
14
8k
Systems programming is for everyone
Avatar for Julia Evans jvns
13
3.1k
How to read your computer's mind
Avatar for Julia Evans jvns
6
790
Why I ❤ Rust
Avatar for Julia Evans jvns
50
54k

Other Decks in Technology

See All in Technology
Amazon Bedrock AgentCoreでブラウザ拡張型AI調査エージェントを開発した話 (シングルエージェント編)
Avatar for Kiminori Yokoi nasuvitz
2
120
Introduction to Sansan Meishi Maker Development Engineer
Avatar for Sansan, Inc. sansan33
PRO
0
350
俺の失敗を乗り越えろ!メーカーの開発現場での失敗談と乗り越え方 ~ゆるゆるチームリーダー編~
Avatar for Satoshi Deishi spiddle
0
340
EKSで実践する オブザーバビリティの現在地
Avatar for HonMarkHunt honmarkhunt
2
310
「静的解析」だけで終わらせない。 SonarQube の最新機能 × AIで エンジニアの開発生産性を本気で上げる方法
Avatar for Wenhan Shi xibuka
2
300
Digitization部 紹介資料
Avatar for Sansan, Inc. sansan33
PRO
1
6.9k
Interop Tokyo 2025 ShowNet Team Memberで学んだSRv6を基礎から丁寧に
Avatar for miyukichi_ospf miyukichi_ospf
0
200
2026年のAIエージェント構築はどうなる?
Avatar for みのるん minorun365
11
2.4k
opsmethod第1回_アラート調査の自動化にむけて
Avatar for OKU/YAMATO yamatook
0
300
20260222ねこIoTLT ねこIoTLTをふりかえる
Avatar for フクイ poropinai1966
0
220
1 年間の育休から時短勤務で復帰した私が、 AI を駆使して立ち上がりを早めた話
Avatar for LINEヤフーTech (LY Corporation Tech) lycorptech_jp
PRO
0
170
名刺メーカーDevグループ 紹介資料
Avatar for Sansan, Inc. sansan33
PRO
0
1.1k

Featured

See All Featured
The #1 spot is gone: here's how to win anyway
Avatar for Tamara Novitovic tamaranovitovic
2
970
JavaScript: Past, Present, and Future - NDC Porto 2020
Avatar for David Neal reverentgeek
52
5.8k
Why Mistakes Are the Best Teachers: Turning Failure into a Pathway for Growth
Avatar for Umar Saidu Auna auna
0
68
A Tale of Four Properties
Avatar for Chris Coyier chriscoyier
162
24k
Breaking role norms: Why Content Design is so much more than writing copy - Taylor Woolridge
Avatar for UX Y'all uxyall
0
190
The Art of Delivering Value - GDevCon NA Keynote
Avatar for David Neal reverentgeek
16
1.9k
Lightning talk: Run Django tests with GitHub Actions
Avatar for Sarah Abderemane sabderemane
0
130
Context Engineering - Making Every Token Count
Avatar for Addy Osmani addyosmani
9
690
JAMstack: Web Apps at Ludicrous Speed - All Things Open 2022
Avatar for David Neal reverentgeek
1
370
HDC tutorial
Avatar for Michiel Stock michielstock
1
460
Rails Girls Zürich Keynote
Avatar for Gregor Martynus gr2m
96
14k
KATA
Avatar for Megan Lloyd mclloyd
PRO
35
15k

Transcript

  1. None
  2. None
  3. None
  4. None
  5. None
  6. None
  7. None

  8. notice when you're confused read the specification do experiments spy

    on it what's DNS? implement your own terrible version
  9. None
  10. None
  11. None
  12. None
  13. None

  14. notice when you're confused read the specification do experiments spy

    on it what's DNS? implement your own terrible version
  15. None
  16. None

  17. $ dig example.com example.com. 86400 IN A 93.184.216.34

  18. $ dig example.com example.com. 86400 IN A 93.184.216.34

  19. +noall +answer .digrc

  20. None
  21. None
  22. None
  23. None
  24. None

  25. browser resolver authoritative nameservers DNS query DNS query where's example.com?

    where's example.com? 93.184.216.34! 93.184.216.34!

  26. resolver browser what's the IP for example.com? hmm, I'll look

    in my cache...
  27. None
  28. None
  29. None
  30. None
  31. None
  32. None
  33. None

  34. browser resolver authoritative nameservers DNS query DNS query where's new.jvns.ca?

    where's new.jvns.ca? NXDOMAIN NXDOMAIN
  35. None
  36. None
  37. None

  38. “The TTL of this record is set from the minimum

    of the MINIMUM field of the SOA record and the TTL of the SOA itself, and indicates how long a resolver may cache the negative answer.”
  39. None

  40. $ dig +all new.jvns.ca ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN,

    id: 23308 [redacted] ;; AUTHORITY SECTION: jvns.ca. 10800 IN SOA ns1.gandi.net. hostmaster.gandi.net. 1662903879 10800 3600 604800 10800
  41. None
  42. None
  43. None
  44. None
  45. None
  46. None
  47. None
  48. None

  49. browser resolver authoritative nameservers DNS query DNS query where's example.com?

    where's example.com? 93.184.216.34! 93.184.216.34!
  50. None
  51. None
  52. None
  53. None

  54. require 'socket' sock = UDPSocket.new sock.bind('0.0.0.0', 0) sock.connect('8.8.8.8', 53)

  55. None

  56. hex_string = "b9620100000100..." bytes = [hex_string].pack('H*') sock.send(bytes, 0)

  57. b96201000001000000000000 076578616d706c6503636f6d0000010001

  58. b96201000001000000000000 076578616d706c6503636f6d0000010001

  59. b96201000001000000000000

  60. def make_question_header(query_id) # id, flags, num questions, num answers, ...

    [query_id, 0x0100, 0x0001, 0x0000, 0x0000, 0x0000] .pack('nnnnnn') end

  61. b96201000001000000000000 076578616d706c6503636f6d0000010001

  62. 076578616d706c6503636f6d0000010001 7 e x a m p l e 3

    c o m 0 1 1

  63. def encode_domain_name(domain) domain.split('.') .map { |x| x.length.chr + x }

    .join + "\0" end example.com 7example3com0

  64. def make_dns_query(domain, type) query_id = rand(65535) header = make_question_header(query_id) question

    = encode_domain_name(domain) + [type, 1].pack('nn') header + question end
  65. None
  66. None
  67. None

  68. notice when you're confused read the specification do experiments spy

    on it implement your own terrible version
  69. None