[dns-operations] extra records in resolver answer, any benefit?
Paul Vixie
paul at redbarn.org
Wed Jan 28 01:12:43 UTC 2015
> Mark Andrews <mailto:marka at isc.org>
> Tuesday, January 27, 2015 4:10 PM
>
>> ...
>
> Actually there is value:
> ...
> * with cookies same zone data is perfectly fine even if not signed.
if by this you mean "in bailiwick for the referral, or matching the
QNAME", then i agree.
i used to think "or a sibling of an authoritative answer" but kaminsky
showed us that the sibling might be a different zone cut.
--
Paul Vixie
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.dns-oarc.net/pipermail/dns-operations/attachments/20150127/866a71ef/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: compose-unknown-contact.jpg
Type: image/jpeg
Size: 770 bytes
Desc: not available
URL: <https://lists.dns-oarc.net/pipermail/dns-operations/attachments/20150127/866a71ef/attachment.jpg>
More information about the dns-operations
mailing list