[dns-operations] Signing of the ARPA zone
Paul Vixie
vixie at isc.org
Thu Mar 25 21:15:26 UTC 2010
> From: Mark Andrews <marka at isc.org>
> Date: Fri, 26 Mar 2010 05:07:26 +1100
>
> The TTL will be related to the cached data under arpa. When the
> offending data clears the cache it will correct itself. This is likely
> to be the ttl of the DNSKEY, DS or negative DS cache entry.
so, to make it happen any faster than ttl expiry, the caching validator
would have to probe the authority (with a long retry interval) to see if
pre-expiry is warranted when validation fails in this way?
More information about the dns-operations
mailing list