This (dns) approach does not authenticate. SRV and TXT records already publicize... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		badrabbit on Nov 26, 2023 \| parent \| context \| favorite \| on: RFC9460: Service Binding via the DNS (SVCB and HTT... This (dns) approach does not authenticate. SRV and TXT records already publicize too much information to the public. A RESTful api would be ideal or adding the equivalent of bearer token auth to DNS.

teddyh on Nov 26, 2023 [–]

Since the DNS record is extensible, it can be extended to contain any extra parameters deemed necessary in the future.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact