[dns-operations] DNS error reporting
Robert Edmonds
edmonds at mycre.ws
Thu Feb 11 18:27:30 UTC 2016
Tony Finch wrote:
> Petr Spacek <pspacek at redhat.com> wrote:
> >
> > I think that URI in response is a good idea but it cannot suffice. Most
> > importantly, if local recursive resolver is dead the URI with a host name will
> > simply not work :-)
>
> > Can we invent something which is structured enough so the end node can
> > translate the message for the user? Or even advise what might be wrong?
>
> I think you can augment a broad-brush error code (e.g. RRSIG validity
> period doesn't cover my current time) with a parametrized URL containing
> further details. I don't know whether the URL format should include
> standard parts or whether it's OK to make it entirely ad-hoc.
Or just POST the raw problem details document, which would keep the URI
a stable identifier and avoid turning it into a format string. (Or pass
the JSON via stdin to a local helper script, etc.)
--
Robert Edmonds
More information about the dns-operations
mailing list