[dns-operations] sophosxl.net problem?
Bob Harold
rharolde at umich.edu
Wed Oct 30 13:02:11 UTC 2019
On Tue, Oct 29, 2019 at 9:07 PM Paul Vixie <paul at redbarn.org> wrote:
>
>
> Mark Andrews wrote on 2019-10-27 19:24:
> > ...
> >
> > BIND tried to fix named to reject AA=0 from authoritative servers a
> > few years back but pandora.tv was returning AA=0 from all servers at
> > the time and we had to back the change out. We still want to make
> > that change.
>
> please consider making this a config option so that those of us who are
> willing to endure outages for nonconforming domains can turn it on. it
> could even become part of some annual so-called dns flag day.
>
> --
> P Vixie
>
I agree.
But if someone thinks that is too drastic, would it be reasonable to make a
config option, plus an exception list? Then someone could make exceptions
for the known cases, but break any new cases, to avoid this problem getting
any worse.
--
Bob Harold
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.dns-oarc.net/pipermail/dns-operations/attachments/20191030/07ef6bb7/attachment.html>
More information about the dns-operations
mailing list