On Nov 14, 2017, at 16:47, Viktor Dukhovni <ietf-d...@dukhovni.org> wrote:
Well, once we're in the "lying with DNS" business, we hardly need to restrict extended diagnostics to errors, we can equally contemplate them for policy-based answers that don't reflect the authoritative zone content... :-8 You make it sound like "lying with DNS" is some future thing and not something that happens right now, 500,000 times per second! I think it's fair to clarify that we're not talking about extended errors any more but rather extended RCODEs or something, if that's what we are doing. I don't think it's sensible to say absolutely that there will never be a need to disambiguate NXDOMAIN or NOERROR since never is an awfully long time, and who knows or dares to dream? Joe
_______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
