On Thu, 2005-10-06 at 22:15:52 +0100, ed proclaimed... > TCP for for DNS lookups are probably going to incur latency. I'd rather > just block that off and ensure that the DNS being provided does not leak > excess > 512 bytes. This might cause some problems with huge round robin > lists, but we can all use pf round robin at the level should we require > a huge address list.
You really should be pumping gas at a gas station or something. Clearly you're not intersted in doing things correctly. > DJB woke a large portion of the world when he released djbdns, I'd not > knock it, and it's pretty good advice at the above URL. And the advice refers to an RFC (which was not written by djb) that specifically states that TCP can be used. I'm not knocking djb, I use qmail. I used to use tinydns, but then there were a whole world of problems with no ipv6 support natively, etc., and I just didn't want to bother anymore.
