Open cfcs opened 8 years ago
The code currently does Unix.string_of_inet_addr by default, making the tool considerably less pure.
Unix.string_of_inet_addr
It would be nice if that was an opt-in hazard, or if, at least, there was a -n option to disable this behavior.
-n
I know, I know, it's mostly a concern for the unfortunate souls among us that happen to use GNU software :-)
Example of why DNS resolution is problematic: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0235
Alternatively, perhaps a pure DNS lib?
The code currently does
Unix.string_of_inet_addr
by default, making the tool considerably less pure.It would be nice if that was an opt-in hazard, or if, at least, there was a
-n
option to disable this behavior.I know, I know, it's mostly a concern for the unfortunate souls among us that happen to use GNU software :-)
Example of why DNS resolution is problematic: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0235
Alternatively, perhaps a pure DNS lib?