Re: [DNSOP] DNS Camel Viewer

> On Mar 26, 2018, at 4:15 AM, Matthijs Mekking wrote: > > Nice viewer :) > > What immediately catches my eye is that the DNSSEC RFCs 4033-4034-4035 are a > Proposed Standard, and RFC 5011 is an Internet Standard. In fact, RFC 5011 is > the only DNSSEC Internet Standard. That can't be right,

Re: [DNSOP] tdns, 'hello-dns' progress, feedback requested

one thing to note is that when the server is authoritative for more than one zone, a cname that crosses from one such zone to another is allowed by 1035 to be chased. however, the resolver has no reason to accept out-of-zone records, since it cannot be sure that a new query in the bailiwick of

Re: [DNSOP] tdns, 'hello-dns' progress, feedback requested

On Mon, Apr 16, 2018 at 03:30:36PM +0100, Tony Finch wrote: > I'm slightly surprised that Evan and Mukund haven't mentioned this, but > BIND 9.1 to 9.11 had additional-from-cache and additional-from-auth > options which controlled this behaviour. (I turned them off on my servers > years ago.) In 9.

Re: [DNSOP] tdns, 'hello-dns' progress, feedback requested

bert hubert wrote: > > In writing this server and while consulting with some other implementors, I > for now have decided that in 2018 it makes no sense to: > > 1) chase CNAMEs that point to another zone > 2) look for glue outside of the zone > > Given that any resolver will ignore those answers a

Re: [DNSOP] Blog Post: DNS over TLS support in Android P Developer Preview

> On 13 Apr 2018, at 20:49, Warren Kumari wrote: > > Hi all, > > As Erik Kline and Ben Schwartz seem to be too modest to toot their own > horn, I'll do it for them: > https://android-developers.googleblog.com/2018/04/dns-over-tls-support-in-android-p.html > >