It appears that Dave Lawrence <t...@dd.org> said: >Stephane Bortzmeyer writes: >> > One current implementation does not differentiate DO=0 vs 1 and gives the >> > same NODATA answer for both cases. >> >> Yes. I see no practical problem with that but, from a philosophical >> point of view, it disturbs me. Naive clients may make wrong >> conclusions from the NODATA answer. > >Very much so, and not just naive programmatic clients but also >non-naive real-life human clients. I myself have been misled by >noerror/nodata where nxdomain would have been correct. It's >frustrating. > >nxdomain is usefully distinct and auth servers really ought to be >strongly encouraged to return it where applicable.
We have an entire RFC 8020 about the difference and why it's important. >From my point of view, anything that doesn't keep that distinction is >seriously broken. R's, John _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
