[ Quoting <e...@isc.org> in "[DNSOP] NOTE RR type for confidenti..." ]
One of our operations staff made what I thought was a clever suggestion
the other day: That it would be nice, from an operational standpoint,
to have a way to encode comments into a zone so that they wouldn't get
obliterated when a dynamic zone was dumped to disk, but couldn't be read
by just anybody with access to "dig".
This draft proposes such a beast. Feedback would be lovely.
http://www.ietf.org/internet-drafts/draft-hunt-note-rr-00.txt
Interesting idea!
What happens if a server get these records and doesn't know about NOTE
and treats them as unknown records?
IOW I wonder if you can ever enforce "can not get a response for a NOTE query"
and maybe you should just give up and allow for this (with TTL=0)?
/Miek
--
Miek Gieben
_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop
