[dns-operations] Always replying to UDP requests with TC=1, good practice or not

Mankin, Allison amankin at verisign.com
Sun Oct 18 20:09:27 UTC 2015

Hi Paul,

i think you mean TC=1.

this supposed anti-ddos behaviour is, i heard from somewhere, patented. at
least, there's a variant where the first UDP query get TC=1 and only after the
client demonstrates that they heard your TC=1 and properly followed up with a
TCP transaction, is UDP answered normally. that variant is, i think, patented.

This Riverhead patent, maybe?


dns-operations mailing list
dns-operations at lists.dns-oarc.net<mailto:dns-operations at lists.dns-oarc.net>
dns-jobs mailing list
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.dns-oarc.net/pipermail/dns-operations/attachments/20151018/21b3564e/attachment.html>

More information about the dns-operations mailing list