[dns-operations] Force TCP for external queries to Open Resolvers?

[Paul Wouters]

On Sun, 31 Mar 2013, Randy Bush wrote:

> if they won't close the open resolver, you think they're gonna force tcp
> only?

The open resolvers for the Fedora Project that are used by
dnssec-trigger does exactly that. It only allows TCP.

Not all open resolvers are run by brainless admins..... And I believe
open resolvers are crucial to the open nature of the internet.

Paul