2014-07-21 10:02:04 +02:00
|
|
|
Expectations for DNS Seed operators
|
|
|
|
====================================
|
|
|
|
|
2024-12-16 19:40:22 +01:00
|
|
|
Neobytes Core attempts to minimize the level of trust in DNS seeds,
|
2014-07-21 10:02:04 +02:00
|
|
|
but DNS seeds still pose a small amount of risk for the network.
|
2014-08-10 05:57:47 +02:00
|
|
|
As such, DNS seeds must be run by entities which have some minimum
|
2024-12-16 19:40:22 +01:00
|
|
|
level of trust within the Neobytes community.
|
2014-08-10 05:57:47 +02:00
|
|
|
|
2024-12-16 19:40:22 +01:00
|
|
|
Other implementations of Neobytes software may also use the same
|
2015-10-17 12:10:45 +02:00
|
|
|
seeds and may be more exposed. In light of this exposure, this
|
2015-03-13 21:55:52 +01:00
|
|
|
document establishes some basic expectations for operating dnsseeds.
|
2014-07-21 10:02:04 +02:00
|
|
|
|
2015-04-28 16:48:28 +02:00
|
|
|
0. A DNS seed operating organization or person is expected to follow good
|
|
|
|
host security practices, maintain control of applicable infrastructure,
|
|
|
|
and not sell or transfer control of the DNS seed. Any hosting services
|
|
|
|
contracted by the operator are equally expected to uphold these expectations.
|
2014-07-21 10:02:04 +02:00
|
|
|
|
|
|
|
1. The DNS seed results must consist exclusively of fairly selected and
|
2024-12-16 19:40:22 +01:00
|
|
|
functioning Neobytes nodes from the public network to the best of the
|
2015-04-28 16:48:28 +02:00
|
|
|
operator's understanding and capability.
|
2014-07-21 10:02:04 +02:00
|
|
|
|
|
|
|
2. For the avoidance of doubt, the results may be randomized but must not
|
|
|
|
single-out any group of hosts to receive different results unless due to an
|
|
|
|
urgent technical necessity and disclosed.
|
|
|
|
|
|
|
|
3. The results may not be served with a DNS TTL of less than one minute.
|
|
|
|
|
|
|
|
4. Any logging of DNS queries should be only that which is necessary
|
2024-12-16 19:40:22 +01:00
|
|
|
for the operation of the service or urgent health of the Neobytes
|
2015-04-28 16:48:28 +02:00
|
|
|
network and must not be retained longer than necessary nor disclosed
|
2014-07-21 10:02:04 +02:00
|
|
|
to any third party.
|
|
|
|
|
|
|
|
5. Information gathered as a result of the operators node-spidering
|
|
|
|
(not from DNS queries) may be freely published or retained, but only
|
|
|
|
if this data was not made more complete by biasing node connectivity
|
|
|
|
(a violation of expectation (1)).
|
|
|
|
|
|
|
|
6. Operators are encouraged, but not required, to publicly document the
|
|
|
|
details of their operating practices.
|
|
|
|
|
|
|
|
7. A reachable email contact address must be published for inquiries
|
|
|
|
related to the DNS seed operation.
|
|
|
|
|
|
|
|
If these expectations cannot be satisfied the operator should
|
2024-12-16 19:40:22 +01:00
|
|
|
discontinue providing services and contact the active Neobytes
|
2015-06-22 08:52:11 +02:00
|
|
|
Core development team as well as posting on
|
|
|
|
[bitcoin-dev](https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev).
|
2014-07-21 10:02:04 +02:00
|
|
|
|
|
|
|
Behavior outside of these expectations may be reasonable in some
|
|
|
|
situations but should be discussed in public in advance.
|
|
|
|
|
|
|
|
See also
|
|
|
|
----------
|
|
|
|
- [bitcoin-seeder](https://github.com/sipa/bitcoin-seeder) is a reference implementation of a DNS seed.
|