[dns-operations] Mozilla Firefox and ANY queries
Tony Finch
dot at dotat.at
Thu Mar 5 15:50:38 UTC 2015
Paul Wouters <paul at nohats.ca> wrote:
> On Thu, 5 Mar 2015, Tony Finch wrote:
>
> > > * ANY always returns a TTL of 5 seconds.
> >
> > That 5 second TTL is an artefact of RPZ processing. By default BIND
> > returns the upstream TTL in responses to ANY queries.
>
> Really? Wouldn't that _contribute_ to DDOS attacks when the attacker
> uses open recursives to attack the authoritative servers?
I meant upstream with cache countdown like normal queries, rather than
doing anything funny like squashing to 5s.
Tony.
--
f.anthony.n.finch <dot at dotat.at> http://dotat.at/
South Utsire, Forties, Cromarty, Forth, Tyne, Dogger, Fisher: Southwesterly 5
to 7, occasionally gale 8 in Cromarty. Moderate, occasionally rough. Mainly
fair. Good.
More information about the dns-operations
mailing list