To:
dnsop@cafax.se
From:
"D. J. Bernstein" <djb@cr.yp.to>
Date:
14 Jan 2001 20:20:06 -0000
Content-Disposition:
inline
Sender:
owner-dnsop@cafax.se
User-Agent:
Mutt/1.2.5i
Subject:
Re: resolvers using non-ephemeral ports
Mark.Andrews@nominum.com writes: > don't send a query from echo. That's a pointless restriction. Forging a DNS packet from an echo server is no worse than forging a DNS packet from a DNS server. Neither situation creates a loop as long as servers (1) always set the response bit in their outgoing packets and (2) never respond to incoming packets with the response bit set. Of course, cross-protocol loops are still theoretically possible. The real problem is that UDP doesn't distinguish clients from servers. One workaround is to design protocols so that outgoing packets are always after incoming packets in lexicographic order. ---Dan