On Nov 24, 2014, at 10:56 AM, Juliusz Chroboczek <j...@pps.univ-paris-diderot.fr> wrote: > I'm a little ashamed to admit that I don't understand the purpose of > reverse DNS.
Reverse DNS is useful for logging, so that you can associate a name with a host. You don't necessarily want to (and may not be able to) send a request to the host, but the reverse tree is pretty easy to populate if everybody does the right thing. With DNSSEC, the reverse tree also becomes a place where you can hang keys that associate with the IP address. And, again given that the host itself might not be entirely reachable, being able to look up its name in the reverse tree can tell you something about it. Of course, in many cases this sort of stuff is not needed and might even be harmful in terms of privacy. But when it is needed, the mechanism is nice to have. _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
