[dns-operations] Mozilla Firefox and ANY queries

Paul Vixie paul at redbarn.org
Fri Mar 6 20:57:59 UTC 2015



> Florian Weimer <mailto:fw at deneb.enyo.de>
> Friday, March 06, 2015 12:03 PM
>
> Some resolvers will ask all authoritative servers for the domain when
> they receive a NOTIMP response. Others will not cache the resulting
> SERVFAIL response.
>
> So unless this is intended as some way to punish resolver operators
> who have clients sending ANY queries, this is probably not such a good
> idea.

to put the punishment where it belongs, i suggest that NOERROR/ANCOUNT=0
is a correct response to ANY from a non-trusted source.

-- 
Paul Vixie
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.dns-oarc.net/pipermail/dns-operations/attachments/20150306/21dce1f8/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: compose-unknown-contact.jpg
Type: image/jpeg
Size: 770 bytes
Desc: not available
URL: <https://lists.dns-oarc.net/pipermail/dns-operations/attachments/20150306/21dce1f8/attachment.jpg>


More information about the dns-operations mailing list