Bitcoin Forum
November 14, 2024, 07:14:22 AM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: DNS name tx  (Read 2234 times)
singpolyma (OP)
Full Member
***
Offline Offline

Activity: 546
Merit: 101



View Profile
September 15, 2010, 04:24:53 PM
 #1

So, we can tx to IPs... can we tx to DNS names?  I don't have a static IP, but I do have DynDNS...
jgarzik
Legendary
*
Offline Offline

Activity: 1596
Merit: 1100


View Profile
September 15, 2010, 04:28:09 PM
 #2

So, we can tx to IPs... can we tx to DNS names?  I don't have a static IP, but I do have DynDNS...

tx to IP is not recommended.  Less secure than normal tx.

Jeff Garzik, Bloq CEO, former bitcoin core dev team; opinions are my own.
Visit bloq.com / metronome.io
Donations / tip jar: 1BrufViLKnSWtuWGkryPsKsxonV2NQ7Tcj
LZ
Legendary
*
Offline Offline

Activity: 1722
Merit: 1072


P2P Cryptocurrency


View Profile
September 16, 2010, 12:25:36 AM
 #3

Yes, but it may be very usable feature. Any ideas how to make it much safer?

My OpenPGP fingerprint: 5099EB8C0F2E68C63B4ECBB9A9D0993E04143362
Gavin Andresen
Legendary
*
Offline Offline

Activity: 1652
Merit: 2301


Chief Scientist


View Profile WWW
September 16, 2010, 02:15:21 AM
 #4

What is the use case for this?

Is it just to make it easier to send anonymous donations by typing in Pay To: "redcross.org" instead of copying&pasting a bitcoin address?

If something like that were implemented, seems like it would just invite the same kind of abuse we see with misspelled-domain-squatters-- setup a domain record for "redcros.org" pointing to a non-Red Cross bitcoin address and take advantage of people's fat-fingered misspellings.  One big advantage of bitcoin addresses is that they have a built-in checksum, so if you misspell them (or screw up the copy&paste) your attempted transaction will be immediately rejected.

How often do you get the chance to work on a potentially world-changing project?
singpolyma (OP)
Full Member
***
Offline Offline

Activity: 546
Merit: 101



View Profile
September 16, 2010, 01:11:30 PM
 #5

The use case was mostly that we have tx to IP (and can only send a memo when going to an IP) and so it seems like whatever reasons there are for sending to IP apply even better to DNS names (for those of us with dynamic IPs).
LZ
Legendary
*
Offline Offline

Activity: 1722
Merit: 1072


P2P Cryptocurrency


View Profile
September 16, 2010, 03:30:17 PM
 #6

I want to use SSL for the connection, using the bitcoin address' public key as the cert.
You would be certain you're connected to who you thought, and safely encrypted. The
bitcoin address would not be used for the transaction, only for authentication. A new
generated bitcoin address would be sent through the SSL connection.

Since it's authenticated, it would then be safe to allow the IP address to be a domain
name.  Some care taken that if a proxy is used, it uses socks4a instead of DNS lookup.

My OpenPGP fingerprint: 5099EB8C0F2E68C63B4ECBB9A9D0993E04143362
eurekafag
Full Member
***
Offline Offline

Activity: 185
Merit: 100


View Profile
September 16, 2010, 09:13:05 PM
 #7

Sometimes a DNS address resolves to several IPs. Try nslookup google.com. Should we try them all?
LZ
Legendary
*
Offline Offline

Activity: 1722
Merit: 1072


P2P Cryptocurrency


View Profile
September 17, 2010, 05:12:34 PM
Last edit: September 17, 2010, 05:29:49 PM by lzsaver
 #8

I see no problem here. If the node is going to receive bitcoins, there are many ways to do it.
Google may use the routing or port forwarding, or register something like bitcoin.google.com.

My OpenPGP fingerprint: 5099EB8C0F2E68C63B4ECBB9A9D0993E04143362
bitcoinex
Sr. Member
****
Offline Offline

Activity: 350
Merit: 252


probiwon.com


View Profile WWW
September 18, 2010, 07:27:18 AM
Last edit: September 18, 2010, 07:37:27 AM by bitcoinex
 #9

Incidentally, for this DNS have custom-built records SRV. Theese records for Kerberos, for example:


$ dig _kerberos._tcp.host.com srv

;; QUESTION SECTION:
;_kerberos._tcp.host.com.   IN   SRV

;; ANSWER SECTION:
_kerberos._tcp.host.com. 3550 IN   SRV   10 10 88 kerberos.host.com.


Requesting for any DNS-name SRV-record in this format, you can find the address of Kerberos-server for this domain. Similarly, we can do for Bitcoin by queryng about: "_bitcoin._tcp.host.com" or something.

All this is done covertly, human sees only the right part of the name: host.com

And for domain names with sub-domains Kerberos using TXT records to enable the customer to understand what realm it belongs to:


$ dig _kerberos.grid.host.com txt

;; QUESTION SECTION:
;_kerberos.grid.host.com.   IN   TXT

;; ANSWER SECTION:
_kerberos.grid.host.com. 3587 IN   TXT   "HOST.COM"


Bitcoin can use this for subdomains like www:

_bitcoin.www.host.com. 3587 IN   TXT   "HOST.COM"

i.e., human can send bitcoin to www.host.com, bitcoin client check TXT _bitcoin.www.host.com for DNS-name of bitcoin "realm", than check SRV _bitcoin._tcp.host.com and, finally, sends bitcoins to IP, specified by this SRV-record.

This scheme is really a part of Kerberos standart and used, I think, more than 15 years.

New bitcoin lottery: probiwon.com
- Moжeт, ты eщё и в Heвидимyю Pyкy Pынкa вepyeшь? - Зaчeм жe вepoвaть в тo, чтo мoжнo нaблюдaть нeпocpeдcтвeннo?
bitcoinex
Sr. Member
****
Offline Offline

Activity: 350
Merit: 252


probiwon.com


View Profile WWW
September 19, 2010, 12:52:32 AM
 #10

And this DNS trick will be usable in Tor's .onion network

New bitcoin lottery: probiwon.com
- Moжeт, ты eщё и в Heвидимyю Pyкy Pынкa вepyeшь? - Зaчeм жe вepoвaть в тo, чтo мoжнo нaблюдaть нeпocpeдcтвeннo?
Pages: [1]
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!