On 12-Dec-2007, at 12:16, Edward Lewis wrote:
At 10:32 -0500 12/10/07, Matt Larson wrote:
repetition of a false claim--that authority servers can be used to
mount as large an attack as open servers--
So what if authority servers can be used for attacks? What does
that have to do with the recommendations in the subject document?
(I know Matt wasn't the one who initiated the claim.)
It seems like it might have some relevance to the decision on whether
this document is worth spending time on in the first place. However,
since the document is already written and has been already extensively
reviewed, this seems hardly relevant. (For the record, I think the
document was worth writing.)
The (tangential!) question of whether recursive resolvers provide a
simpler mechanism for launching these kinds of attacks than
authoritative-only servers has been answered by several people,
several times, I think (one example is <http://www1.ietf.org/mail-archive/web/dnsop/current/msg04457.html
>).
The draft has good recommendations regardless of the events that
gave rise to it.
I agree. The sooner it is published, the better.
Joe
_______________________________________________
DNSOP mailing list
[email protected]
https://www1.ietf.org/mailman/listinfo/dnsop
