[dns-operations] DNS Violations (Was: Hall of DNS Shame (?))

Ondřej Surý ondrej.sury at nic.cz
Mon Jan 30 15:14:55 UTC 2017


----- Original Message -----
> From: "jv" <jv at fcelda.cz>
> Cc: "dns-operations" <dns-operations at dns-oarc.net>
> Sent: Monday, 30 January, 2017 15:34:10
> Subject: Re: [dns-operations] DNS Violations (Was: Hall of DNS Shame (?))

>> So both combined (textual + dnstap) might work the best.
> 
> Agreed.
> 
>> still have no idea how that could be used for automated testing unless we start
>> editing those dnstap files to have a "correct" response from those servers. But
>> any ideas are welcomed.
> 
> I have one idea. Most (all) of the violations are query-response
> pairs. So for instance, if you want to test if Knot Resolves is able
> to cope with the malformed responses, you can translate the .dnstap
> files to Deckard's .rpl templates. I believe this could be already
> done (semi-)automatically by a script.

I am not sure how useful this is - the ultimate goal is to fix
the standard-violating software, and not to add more workarounds
to DNS Resolvers, right?

Writing a deckard test case for each violation - mostly for authoritative
servers seems like a waste of time.

Cheers,
--
 Ondřej Surý -- Technical Fellow
 --------------------------------------------
 CZ.NIC, z.s.p.o.    --     Laboratoře CZ.NIC
 Milesovska 5, 130 00 Praha 3, Czech Republic
 mailto:ondrej.sury at nic.cz    https://nic.cz/
 --------------------------------------------




More information about the dns-operations mailing list