[dns-operations] [Ext] Surprising behaviour by certain authoritative name servers

Niall O'Reilly niall.oreilly at ucd.ie
Wed Jan 8 15:13:08 UTC 2020


Thanks, Ed.

On 8 Jan 2020, at 13:51, Edward Lewis wrote:

> I'd agree that it **is not** a protocol violation based on this line of reasoning:
>
> Imagine the zone being re-loaded often (more than once a second) with the effect that every second or wall clock results in the(/a/each) set's TTL lowered by one.  That's "legal" and would result in a protocol-compliant implementation acting as observed.

IIUC, in this scenario, you mean that the "constant TTL" is being deliberately
adjusted at the master?

If so, fair enough, the zone admin is acting within their authority (sic!).
But when I'm the zone admin, and definitely NOT doing that?

> Admins are allowed to do silly things ... the protocol permits that. ;).
> And that is why remote, third-party debugging of server operations is tricky.

Verily! 8-)
/N
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 903 bytes
Desc: OpenPGP digital signature
URL: <https://lists.dns-oarc.net/pipermail/dns-operations/attachments/20200108/81544c73/attachment.sig>


More information about the dns-operations mailing list