DNSOP mailing list

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: gson@nominum.com (Andreas Gustafsson)
cc: "D. J. Bernstein" <djb@cr.yp.to>, ngtrans@sunroof.eng.sun.com, namedroppers@ops.ietf.org, ipng@sunroof.eng.sun.com, dnsop@cafax.se
From: Robert Elz <kre@munnari.OZ.AU>
Date: Thu, 02 Aug 2001 17:49:38 +0700
In-Reply-To: <E15S3H1-000NMR-00@psg.com>
Sender: owner-dnsop@cafax.se
Subject: Re: Joint DNSEXT & NGTRANS agenda

    Date:        Wed, 01 Aug 2001 14:11:23 -0700
    From:        gson@nominum.com (Andreas Gustafsson)
    Message-ID:  <E15S3H1-000NMR-00@psg.com>

  | When resolving, BIND 8 and 9 do reject
  | all records that are not within the domain whose authoritative
  | qservers are being queried.

That's broken, and should be fixed.  If it really is as you have
explained it, it guarantees that some perfectly legal DNS configurations
can never be properly resolved.

  | If they did not, we would
  | be seeing much more cases of cache poisoning that we do now.

How?   No-one is suggesting that these records be put in the cache.
How can the cache be poisoned without that?

kre

Follow-Ups:
- Re: Joint DNSEXT & NGTRANS agenda
  - From: Masataka Ohta <mohta@necom830.hpcl.titech.ac.jp>
- Re: Joint DNSEXT & NGTRANS agenda
  - From: bert hubert <ahu@ds9a.nl>

References:
- Re: Joint DNSEXT & NGTRANS agenda
  - From: "D. J. Bernstein" <djb@cr.yp.to>
- Re: Joint DNSEXT & NGTRANS agenda
  - From: Robert Elz <kre@munnari.OZ.AU>

Prev by Date: Re: Joint DNSEXT & NGTRANS agenda
Next by Date: Re: Joint DNSEXT & NGTRANS agenda
Prev by thread: Re: Joint DNSEXT & NGTRANS agenda
Next by thread: Re: Joint DNSEXT & NGTRANS agenda
Index(es):
- Date
- Thread

Home | Date list | Subject list