[dns-operations] FreeBSD and the slaving of the root zone

Duane Wessels wessels at packet-pushers.com
Tue Jul 31 22:47:15 UTC 2007

On Tue, 31 Jul 2007, Patrik Fältström said:

> I.e. I have no idea what *real* problem this solves. So it feels like

I think it solves (as Paul calls it) the "non-existence of
non-terminals" problem.  The protocol doesn't have a way for resolvers
to learn that "local" is not a valid top-level zone and that there
is no reason to keep asking about _msdcs.foo.local, _msdcs.bar.local,
_msdcs.sucks.local, etc.  We were talking about this a little during
the oarc/dnsops meeting a few days ago (in the jabber room).

axfr'ing the root zone is a ___(adjective)___ hack that doesn't
require any protocol changes.

It would be nice to have a (more) in-band method to solve this
problem (ie, new rcode or rrtype) .  But given that the roots fear
too much TCP and UDP is more susceptible to spoofing, it probably
won't happen without DNSSEC.

Duane W.

More information about the dns-operations mailing list