Hi all, This document may contain much that makes folk grumpy.
It proposes allowing an authoritative nameserver to return additional information (surprisingly, in the Additional section), and have recursives trust it (because it is DNSSEC signed). This makes responses larger, and so we propose an, um, interesting mitigation to the DDoS concern... you'll have to read it to find out what :-P W ---------- Forwarded message ---------- From: <internet-dra...@ietf.org> Date: Sun, Jan 11, 2015 at 3:47 PM Subject: New Version Notification for draft-wkumari-dnsop-multiple-responses-00.txt To: Wesley Hardaker <i...@hardakers.net>, Warren Kumari <war...@kumari.net>, Zhiwei Yan <yanzhi...@cnnic.cn> A new version of I-D, draft-wkumari-dnsop-multiple-responses-00.txt has been successfully submitted by Warren Kumari and posted to the IETF repository. Name: draft-wkumari-dnsop-multiple-responses Revision: 00 Title: Returning multiple answers in a DNS response. Document date: 2015-01-11 Group: Individual Submission Pages: 8 URL: http://www.ietf.org/internet-drafts/draft-wkumari-dnsop-multiple-responses-00.txt Status: https://datatracker.ietf.org/doc/draft-wkumari-dnsop-multiple-responses/ Htmlized: http://tools.ietf.org/html/draft-wkumari-dnsop-multiple-responses-00 Abstract: This document (re)introduces the ability to provide multiple answers in a DNS response. Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. The IETF Secretariat -- I don't think the execution is relevant when it was obviously a bad idea in the first place. This is like putting rabid weasels in your pants, and later expressing regret at having chosen those particular rabid weasels and that pair of pants. ---maf _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
