On 9 Mar 2015, at 16:32, Stephane Bortzmeyer <[email protected]> wrote: > > I re-send here two questions that have apparently not been addressed > in -01
Hi Stephane, Sorry, this was my oversight. I have added them to the issue tracker at https://github.com/DNSOP/draft-5966-bis. I will make sure they are addressed in the next issue and possibly in the slot at the dnsop meeting. regards John > > On Sun, Jan 04, 2015 at 06:42:26PM +0100, > Stephane Bortzmeyer <[email protected]> wrote > a message of 37 lines which said: > >> Section 3, "some network devices deliberately refuse to handle DNS >> packets containing EDNS0 options" Isn't it true of DNS-over-TCP as >> well? SAC035 is pessimistic (see table 2). Do we have other data on >> TCP (lack of) support in middleboxes? > >> In the same section, should we add a word about poisoning attacks? >> AFAIK, at least one resolver, CNS, switches to TCP when it receives >> too many answers with the wrong Query ID. Should we document that >> the use of TCP may make poisoning more difficult? > > _______________________________________________ > DNSOP mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/dnsop _______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
