> Mark Andrews <mailto:ma...@isc.org> > Friday, January 16, 2015 5:51 PM > > Sending UPDATE messages instead of IXFR deltas is dangerous. UPDATE > is tolerent of a lots of things that you really don't want to allow > when doing a incremental update of a zone.
yes, it's dangerous, for the reason you've stated. > > Delete of non-existant data is not a error with UPDATE. It "cannot > happen" with IXFR so if you see you know you are out of sync. > > CNAME related changes may or may not happen depending upon the state > of the zone. > > Adds of existing data is not a error with UPDATE. This is "cannot > happen" with IXFR so if you see you know you are out of sync. > > Out of sync does happen. That code does get exercised. People > mis-manage master zones. Database delta -> IXFR has been problematic > in the past. some constraints, like "prereq must always be specified", could be added for the "UXFR" case. -- Paul Vixie
_______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
