[ Quoting in "Re: [dns-operations] Is this valid ..." ]
On Oct 11, 2014, at 1:06 AM, Miek Gieben wrote:
20730 is the old edns client subnet code...
This query is using 20732, though . . .
True. Also the rdata of the OPT does not parse a edns client subnet, as the
address famil
20730 is the old edns client subnet code...
On 10 Oct 2014 19:01, "Roland Dobbins" wrote:
>
> On Oct 11, 2014, at 12:14 AM, Mohamed Lrhazi <
> mohamed.lrh...@georgetown.edu> wrote:
>
> > Option: Unknown (20732)
> > Option Code: Unknown (20732)
> > Option Length: 2
nt with nic.berlin."
>
> Actually this is a compliance issue, as only NS, DS and glue records should
> be present at the zone...
.wien seems to have the same 'issue'.
I don't really care about this, but it does seem a bit silly to have such a TXT
record in a DNS zone
so take a look at
> http://tools.ietf.org/html/rfc6781
Or don't roll your keys at all (except in a emergency).
For my personal zones I use pretty much static keys.
grtz Miek
--
Miek Gieben
PGP 3880D0F6
signature.asc
Description: Digital signature
__
ot of edns subnet users, use the old (unofficial type code): 0x50fa
- Grtz,
---
Miek Gieben
signature.asc
Description: Digital signature
___
dns-operations mailing list
dns-operations@lists.dns-oarc.net
https://lists.dns-oarc.net/mailman/listinfo/dns-
[ Quoting bert hubert at 15:11 on January 10 in "Re: [dns-operations] DNS ANY
reques"... ]
> > do you refer if you say "the result of an ANY query is very well defined"?
>
> From 1034, 3.7.1:
>
> matches just that type. (e.g., A, PTR).
> ..
> * matches all RR types.
>
> From
[ Quoting Peter van Dijk at 15:01 on January 10 in "Re: [dns-operations] DNS
ANY reques"... ]
> On Jan 10, 2013, at 14:39 , Miek Gieben wrote:
>
> > A agree with the rest of your mail, but I have to ask. To which document
> > do you refer if you say "the re
r, refusing them outright makes
> > sense to me.
>
> For queries to authoritive servers, the result of an ANY query is very well
> defined and useful.
A agree with the rest of your mail, but I have to ask. To which document
do you refer if you say "the result of an ANY query is v
nefit that you'd get out of this?
I don't now as it wasn't my idea. Right now it sounds like a cool project.
> Also consider (and try to estimate the cost of) the effort you'd need to
> put in to make this "right", whatever that
SoftHSM is (I think) much easier to do, more
scalable and done quicker.
But isn't OpenDNSSEC created for this?
Regards,
--
Miek Gieben http://miek.nl
signature.asc
Description: Digital signature
___
[ Quoting in "Re: [dns-operations] Summary: Anyon..." ]
> On 14. 10. 2012, at 13:37, Carlos M. Martinez wrote:
>
> > That could be a really interesting project. I'm not sure how can I
> > contribute, but I'd love to see that happen.
>
> Even helping defining requirements (when we start gatheri
eodns
>
> Thank you. How about the performance of this perl DNS?
This server is now being rewritten (or actually already up and running) in Go:
https://github.com/abh/geodns
This was done for precisely the reason you mention: performance.
Regards,
--
Miek Gieben
[ Quoting in "[dns-operations] First experiments ..." ]
> Please have a look at http://lutz.donnerhacke.de/eng/Blog/DNS-Dampening
Nice. Two questions:
1. Why didn't you use: http://www.redbarn.org/dns/ratelimits ?
2. Will this scale to TLD sized DNS servers?
Regards,
-
13 matches
Mail list logo
