I have a couple of questions about the text in 3.1 around TTLs and caching:
> Address records cached locally MUST have a limited TTL. The initial TTL
> for locally-cached address records MUST be set to the lesser of the ANAME
Reading this reminds me of the way that Unbound works with respect to
Stephane Bortzmeyer wrote:
>
> Cute trick. I love it.
:-)
> But it modifies the rules for response credibility (the most credible
> response is in the additionnal section, not in the answer section).
> Should we update RFC 2181, section 5.4.1?> I tend to think that the A
> record, in that exampl
On Tue, Jul 18, 2017 at 05:09:00PM +0100,
Tony Finch wrote
a message of 80 lines which said:
> A client queries its resolver for dotat.at A, but chiark has
> renumbered, so the client gets a response from the ANAME-aware
> resolver like below. A validating ANAME-aware client can see it
> shoul
Op 18-07-17 om 18:09 schreef Tony Finch:
> The other kind of DNS server that might be able to do something useful
> with ANAME is a recursive server, so it could co-operate nicely with
> authoritative servers that are playing clever tricks. But the rDNS will
> have to be careful about not breaking
Andrew Sullivan wrote:
>
> I think I (at least mostly) agree. One possible way to sort out these
> bits of potential confusion is to break the problem up into conceptual
> parts, so that one can see the way that they work together. One part
> is, "How do you give this instruction to the master s
Hi,
On Tue, Jul 18, 2017 at 05:09:00PM +0100, Tony Finch wrote:
> In my view an authoritative server which does online signing and on-demand
> record synthesis is a master server. You can make all your public
> authoritative servers into masters if you like, but it must not be
> required.
>
> If
Willem Toorop wrote:
>
> The dependency on online signing is a little more then just a technical
> issue.
I need to review the draft properly, but I do not think ANAME should
require any online signing.
In my view an authoritative server which does online signing and on-demand
record synthesis i
Dear colleagues,
I managed to delete instead of sending my note on this topic earlier
today, and my brain is sufficiently soft that I couldn't just re-type
it out. Nevertheless,
On Tue, Jul 18, 2017 at 03:19:44PM +0200, Willem Toorop wrote:
> I support trying to come up with a standards solution
I support trying to come up with a standards solution for alias names at
the apex. But
The dependency on online signing is a little more then just a technical
issue.
Currently the zone owner, the holder of the domain name, is the one
having control over the zone content and as such also the
A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Domain Name System Operations of the IETF.
Title : Address-specific DNS Name Redirection (ANAME)
Authors : Evan Hunt
Peter v
10 matches
Mail list logo
