On Jul 29, 2009, at 1:14 PM, Larry Nedry wrote:
The require_resolvable_fromhost plugin returns DENYSOFT when a host
doesn't
resolve. This makes sense with a well behaved host. But I've
noticed that
some hosts that don't resolve will continuously retry and never seem
to
disconnect.
The plugin depends on DNS which is notoriously flaky; so doing a "hard
deny" based on that is risky. Even escalating the rejection is risky,
because DNS could be broken for days ...
- ask
--
http://develooper.com/ - http://askask.com/
