Stephane Bortzmeyer <bortzme...@nic.fr> wrote: > > > "ANY Query" refers to a DNS meta-query > > meta-query is not defined in this document, in RFC 1034, 1035 or > 7719. Opinion: just "query".
There's precedent for "metatype" - cf. RFC 2136 section 3.4.1.2 - "check the TYPE and if it is ANY, AXFR, MAILA, MAILB, or any other QUERY metatype" also the IANA registry describes RRtypes 128-255 as "Q TYPEs, Meta TYPEs". > > Implementers SHOULD provide an option for operators to specify > > behavior over TCP. > > If this is because, with TCP, you have some certainty about the client > address, and therefore do not risk reflection attacks, then I suggest > to replace TCP by "transports that provide some guarantee about the > authenticity of the source IP address, such as TCP or DNS cookies". The reason I deployed minimal-any was to avoid oversized UDP responses, to avoid fragmentation and truncation - not because of spoofing (RRL deals with spoofing). Cookies don't do anything to help avoid oversized responses, so I would still want to send a minimal-any response to a cookie client. Tony. -- f.anthony.n.finch <d...@dotat.at> http://dotat.at/ - I xn--zr8h punycode Hebrides: West 6 to gale 8, occasionally severe gale 9 at first, backing southwest 5 or 6 later. Rough or very rough, occasionally high at first. Rain or wintry showers. Moderate or good. _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop