Re: [dns-operations] DNSCrypt.

On 5/31/2013 5:59 PM, Paul Vixie wrote: > ... > > Ken A wrote: >> What is keeping nameserver vendors from building this into servers? > > motivation? > > if folks wanted path security between the stub and the recursive, > there'd be some demand for SI

Re: [dns-operations] DNSCrypt.

What is keeping nameserver vendors from building this into servers? Ken Anderson On 5/31/2013 5:47 AM, Dobbins, Roland wrote: > > > > > > > > ---

Re: [dns-operations] dns response rate limiting (DNS RRL) patch available for testing

On 6/12/2012 10:16 AM, Vernon Schryver wrote: From: Ken A To: dns-operati...@mail.dns-oarc.net On a authoritative + recursive server, instead of a separate view, we use: acl "trusted" { x.x.x.x/z; }; allow-recursion { trusted; }; Is there any way to apply this patch so that i

Re: [dns-operations] dns response rate limiting (DNS RRL) patch available for testing

On a authoritative + recursive server, instead of a separate view, we use: acl "trusted" { x.x.x.x/z; }; allow-recursion { trusted; }; Is there any way to apply this patch so that it does not affect a specific acl, such as "trusted" addresses? Or, is it recommended/required that we configure