[dns-operations] Mozilla Firefox and ANY queries

[Paul Wouters]

On Thu, 5 Mar 2015, Tony Finch wrote:

>> * ANY always returns a TTL of 5 seconds.
>
> That 5 second TTL is an artefact of RPZ processing. By default BIND
> returns the upstream TTL in responses to ANY queries.

Really? Wouldn't that _contribute_ to DDOS attacks when the attacker
uses open recursives to attack the authoritative servers?

Paul