[rbldnsd] Re: rbldnsd and CIDR heirarchy

[Aaron Hopkins]

-----BEGIN PGP SIGNED MESSAGE-----

> Aaron, please review current 0.98pre version: it includes ip4trie dataset
> (implemented as an excersise - i tried to understand how the ptrie works),
> which seems to be exactly what you need.  Currently, it only allows *one*
> value per CIDR range, but this seems to be ok. Note please this is
> experimental feature

Thats fine for my application.  I'll try putting some data into it and see
what happens.

> (there is no real application for such a dataset IMHO).

Rather than to place a judgement on a given IP as the DNSBLs do, it will be
used to offer as much information about it as possible, allowing judgements
to be made at the application level.  I could offer something like:

209.151.224.0/19 IN TXT "asn=11051;as=cyberverse.com;country=US;netmask=19"

Rather than hammering at whois servers to find information about each IP,
this information can be distributed and cached in DNS.  If you were looking
up 209.151.236.2, you could tell that it is from a /19, was on
cyberverse.com's network, which is BGP Autonomous System number 11051, and
is based in the United States.

Lots of information about an IP can be packed into a few hundred bytes. 
Parsing it is fairly simple - split on ; and walk through the name=value
pairs looking for the field you are interested in.

                                   -- Aaron

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iQCVAwUBPz+5WEfJWHAEvsjBAQGyagP8D18rOYlAxJhoBVNobvw7RgmEeLcFLKhC
J2phvNwZGL7Yu90DWCLImen1UBkaAFlJ927sqoskuBCn7WF7dOJVjNchoihgsQ3A
T7KXPBPofl+O//CI04Vu13Aa1254z7kRnkPIrMXl2lfVA4zTBUO8dhwOlO86PtDb
yFWo4NBTfzg=
=zXv6
-----END PGP SIGNATURE-----