Re: [dns-operations] Why would an MTA issue an ANY query instead of an MX query?

Spf? On Jun 10, 2012 6:17 AM, "Dobbins, Roland" wrote: > > Clue appreciated, thanks! > > --- > Roland Dobbins // > > Luck is the residue of opportunity and design. > >

Re: [dns-operations] Why would an MTA issue an ANY query instead of an MX query?

So, list, I am young and foolish. Aside from being in the RFC, are there legitimate reasons to continue supporting ANY queries? On Jun 10, 2012 7:03 AM, "Jan-Piet Mens" wrote: > > If that's it, then would asking djb to change its behavior > > ROFL. Ask DJB to change its behavior? Good luck with t

Re: [dns-operations] Why would an MTA issue an ANY query instead of an MX query?

ANY queries, in my *limited* experience, have had higher latencies by an order or two of magnitude. but that was mostly when I was doing open resolver research a year or two ago. On Jun 10, 2012 7:25 AM, "DTNX Postmaster" wrote: > On Jun 10, 2012, at 12:33, Dobbins, Roland wrote: > > > On Jun 10,

Re: [dns-operations] Why would an MTA issue an ANY query instead of an MX query?

servers as forwarders. > > Steinar Haug, Nethelp consulting, sth...@nethelp.no > ___ > dns-operations mailing list > dns-operations@lists.dns-oarc.net > https://lists.dns-oarc.net/mailman/listinfo/dns-operations > dns-jobs mailing list > http

Re: [dns-operations] Why would an MTA issue an ANY query instead of an MX query?

tions mailing list > dns-operations@lists.dns-oarc.net > https://lists.dns-oarc.net/mailman/listinfo/dns-operations > dns-jobs mailing list > https://lists.dns-oarc.net/mailman/listinfo/dns-jobs -- Kyle Creyts ___ dns-operations mailing list dns-operations@lists.dns-oarc.net https://lists.dns-oarc.net/mailman/listinfo/dns-operations dns-jobs mailing list https://lists.dns-oarc.net/mailman/listinfo/dns-jobs

Re: [dns-operations] DDoS botnet behaviour

; saying "IP addresses that the filter says are the same recently asked > 27 times for A records for example.com and the last 13 responses were > dropped" would not satisfy people wanting to know why their customer's > browsers are stalling when trying to get to their web sites. > &g

Re: [dns-operations] Why would an MTA issue an ANY query instead of an MX query?

> never need outside DNS service? > > Of course, blocking consumer port 53 would not be a panacea, but > it might reduce the proxies available for abuse. > > > Vernon Schryver    v...@rhyolite.com > ___ > dns-operations mail

Re: [dns-operations] Why would an MTA issue an ANY query instead of an MX query?

de NAT): Attacker -> Proxy -> Recursive -> Proxy -> Target Inside attacker, no proxy (Recursive(s) live inside NAT, or do not exist): Attacker -> CPE -> Auth -> CPE -> Target On Mon, Jun 11, 2012 at 9:52 PM, Kyle Creyts wrote: > bigger question: why allow the UDP

Re: [dns-operations] dotless domains

t I can do >> something. And I will not let what I cannot do interfere with what >> I can do. >> -- Edward Everett Hale, (1822 - 1909) > -- > Mark Andrews, ISC > 1 Seymour St., Dundas Valley, NSW 2117, Australia > PHONE: +61 2 9871 4742 INTERNET: ma...@isc.o

Re: [dns-operations] dotless domains

(I do realize that this may be outside of the scope of this conversation, but I really think people should be strongly encouraged to use the dot at the end.) On Sun, Sep 23, 2012 at 11:58 PM, Kyle Creyts wrote: > Logically, shouldn't a right-side dot fix all of this? > > If I brow