To:
gson@nominum.com (Andreas Gustafsson)
cc:
"D. J. Bernstein" <djb@cr.yp.to>, ngtrans@sunroof.eng.sun.com, namedroppers@ops.ietf.org, ipng@sunroof.eng.sun.com, dnsop@cafax.se
From:
Robert Elz <kre@munnari.OZ.AU>
Date:
Thu, 02 Aug 2001 17:49:38 +0700
In-Reply-To:
<E15S3H1-000NMR-00@psg.com>
Sender:
owner-dnsop@cafax.se
Subject:
Re: Joint DNSEXT & NGTRANS agenda
Date: Wed, 01 Aug 2001 14:11:23 -0700 From: gson@nominum.com (Andreas Gustafsson) Message-ID: <E15S3H1-000NMR-00@psg.com> | When resolving, BIND 8 and 9 do reject | all records that are not within the domain whose authoritative | qservers are being queried. That's broken, and should be fixed. If it really is as you have explained it, it guarantees that some perfectly legal DNS configurations can never be properly resolved. | If they did not, we would | be seeing much more cases of cache poisoning that we do now. How? No-one is suggesting that these records be put in the cache. How can the cache be poisoned without that? kre