Canonical list of overly general domains?
Daniel E. Renfer
Duck at Kronkltd.net
Sat Jan 6 21:03:09 UTC 2007
While I haven't been able to find a good list of domains that meet
this requirement, what does everybody think of the idea that if you
can't find a DNS entry for the domain part of the trust root then it's
not a good candidate for a trust root.
Maybe it's just my DNS servers, but I'm not getting a response for
things such as "com" or "co.uk"
any thoughts?
--
Daniel E. Renfer
http://kronkltd.net/
On 1/5/07, Adam Langley <alangley at gmail.com> wrote:
> From the v1.1 spec:
> "It is RECOMMENDED Identity Provider's protect their End Users from
> requests for things like http://*.com/ or http://*.co.uk/."
>
> Is there a list of such domains? Of course, one can take the list of
> TLDs and ccTLDs, but as the *.co.uk example shows, there may be other
> domains which should be considered too general to trust.
>
>
> Thanks
>
> AGL
>
> --
> Adam Langley agl at imperialviolet.org
> http://www.imperialviolet.org 650-283-9641
More information about the specs
mailing list