[dns-operations] DNS zone transfers are now illegal in North Dakota?
Mark Andrews
Mark_Andrews at isc.org
Mon Jan 21 22:08:57 UTC 2008
> At 17:10 +0000 1/21/08, bmanning at vacation.karoshi.com wrote:
>
> > when did "we" say otherwise? where is this new "requirement"
> > documented? :)
>
> Same as where most other requirements are documented, in the oral
> history of the IETF. The new requirements (closing of zone
> transfers) have been felt in knobs restricting AXFR responses, NSEC3,
> permitting transfers based on TSIG in EDNS0. Maybe the requirement
> isn't documented, but it's impact is felt.
There is a requirement to be *able* to close it off.
There is no requirement to close it off. It's a matter
of choice.
Mark
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark_Andrews at isc.org
More information about the dns-operations
mailing list