Peter Andreev wrote: > > For example: if user asks for non-existent domain, caching server > > replies with some address and no-error rcode. > > _Extremely_ bad idea. > > > Yes, I know, but boss is boss and task is task :). > > Thank you very much for your answer.
You might want to talk to your boss about DNSSEC and how it insures that "answer modification" is not allowed -- and how it keeps your customers safe and secure and is a good selling point (see the Comcast announcement that was made yesterday). AlanC
signature.asc
Description: OpenPGP digital signature
_______________________________________________ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
