[dns-operations] TTL=0; Last known good answer (Re: dns retries amplify attack)
Tony Finch
dot at dotat.at
Mon Oct 24 15:54:42 UTC 2016
Jared Mauch <jared at puck.nether.net> wrote:
>
> I saw some people return the last known good response w/ TTL=0,
> when the authorities are unresponsive. How widely is this used/configured?
OpenDNS does that; I don't know of any others.
Tony.
--
f.anthony.n.finch <dot at dotat.at> http://dotat.at/ - I xn--zr8h punycode
Trafalgar: South 4 or 5, increasing 6 at times, becoming cyclonic 6 to gale 8
later. Very rough or high. Rain or showers. Moderate or good, occasionally
poor.
More information about the dns-operations
mailing list