[dns-operations] FreeBSD and the slaving of the root zone
Duane Wessels
wessels at packet-pushers.com
Tue Jul 31 22:47:15 UTC 2007
On Tue, 31 Jul 2007, Patrik Fältström said:
> I.e. I have no idea what *real* problem this solves. So it feels like
I think it solves (as Paul calls it) the "non-existence of
non-terminals" problem. The protocol doesn't have a way for resolvers
to learn that "local" is not a valid top-level zone and that there
is no reason to keep asking about _msdcs.foo.local, _msdcs.bar.local,
_msdcs.sucks.local, etc. We were talking about this a little during
the oarc/dnsops meeting a few days ago (in the jabber room).
axfr'ing the root zone is a ___(adjective)___ hack that doesn't
require any protocol changes.
It would be nice to have a (more) in-band method to solve this
problem (ie, new rcode or rrtype) . But given that the roots fear
too much TCP and UDP is more susceptible to spoofing, it probably
won't happen without DNSSEC.
Duane W.
More information about the dns-operations
mailing list