←back to thread

A New Future for Icanhazip

(major.io)
980 points nkcmr | 1 comments | 06 Jun 21 19:21 UTC | HN request time: 0s | source
Show context
hyperion2010 ◴[06 Jun 21 23:04 UTC] No.27417175[source]
This is a perfect illustration of why the DNS system is fundamentally broken. There is zero reason why icanhazip.com needs to or should resolve to a single host or even a single virtual host managed by some SDN operated by a corp that controls thousands of machines.

These queries could load balanced across the whole internet, the code is small enough that you could just whitelist the code by checksum and then compare results from multiple underlying hosts. The fact that you need a giant corporation to be able to practically run the backend for what is essentially urn:asker.public.ip is absurd beyond belief.

The big players aren't going to fix this because the broken protocols give them a major competitive advantage.

replies(1): >>27417217 #
andrewmcwatters ◴[06 Jun 21 23:09 UTC] No.27417217[source]
It's worse than that: you shouldn't have to send an HTTP request to another server somewhere else in the world to figure out your public Internet address.
replies(1): >>27418175 #
1. bombcar ◴[07 Jun 21 01:57 UTC] No.27418175[source]
I’m surprised there isn’t something in ICMP that returns the routable host IP. Then you could ping anything in the world that responds to ping and know your IP.