Florian Weimer <f...@deneb.enyo.de> wrote: > > Is there still no reduction of EDNS buffer size to around 1200 bytes? > Isn't it time after ten years to address that particular vulnerability?
Yes. I would like an RFC on this topic, but I don't have the bandwidth to pursue it myself. I sent some notes to the dnsop wg after IETF 101 but there was a disappointing lack of interest. (See also the follow-up messages.) https://mailarchive.ietf.org/arch/msg/dnsop/xnJjuOFRE4IiT7uqEFyqhYKKT7c Tony. -- f.anthony.n.finch <d...@dotat.at> http://dotat.at/ Thames, Dover: Southwest 6 to gale 8, becoming variable 4, occasionally southwest 5 later. Slight or moderate, occasionally rough at first. Rain at first. Good, occasionally poor at first.
