> The bits on the wire are fine, but I am unhappy with the implication > that reasonable people should be happy with fake NODATA but if > you're a pedant who demands NXDOMAIN, well OK, if you insist. Real > things like query minimization depend on NXDOMAIN. If I query for > a.b.c.d.example and d.example does not exist, fake NODATA will make > the client leak the entire name with multiple wasted queries.
It seems to me that main purpose of query minimization is to find delegations without leaking the entire qname. The parent doesn't have to know the full qname. There is no reason to assume that clients are constructing names that they don't want to the target zone to know. The main exception I can think off, not from a privacy point of view, but from the view of performance is reverse DNS for IPv6. In that case a NODATA answer may lead to a lot of wasted queries. _______________________________________________ DNSOP mailing list -- dnsop@ietf.org To unsubscribe send an email to dnsop-le...@ietf.org
