Walked in to this a few minutes late.
The speaker is trying to do some ninjafu on name server setups.
I’ve written far more than anyone ever should about NS setup.
You can easily get back some real garbage on answers.
Feeding it all over TCP/HTTPS won’t fix it.
I think I understand what he’s trying to do with the tool he wrote.
At the same time, I’m not 100% sure I get the point.
You occasionally get bad stuff from NSes.
I don’t know….make sure your shit gives good answers?
If it’s a case where somebody outside is getting bad information from your domain’s servers, feed the problem to things like dynamic firewalls so no traffic comes.
So. you wanna go to footer.com. Their NS responses are suss. No, you can’t visit.
Like sex in the champagne room….