* Mark Andrews: > There really is only one solution to preventing "bogus" > traffic reaching the root servers and that is to run a local > copy of the root zone.
Or sign the root and use aggressive negative caching (which is currently prohibited by the RFCs, I'm told). I agree that information leakage is a problem. Curiously enough, no root server or TLD operators that I know of has published some sort of privacy statement that underlines how they deal with this issue. It's also the reason why I think that AS112 for TLDs will not fly. _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
