Re: [dnsext] Fwd: RFC 2308 & RFC 4035
Mark Andrews <marka@isc.org> Sat, 26 February 2011 23:42 UTC
Return-Path: <marka@isc.org>
X-Original-To: dnsext@core3.amsl.com
Delivered-To: dnsext@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 9776D3A6960 for <dnsext@core3.amsl.com>; Sat, 26 Feb 2011 15:42:03 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.213
X-Spam-Level:
X-Spam-Status: No, score=-2.213 tagged_above=-999 required=5 tests=[AWL=-0.214, BAYES_00=-2.599, J_CHICKENPOX_37=0.6]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Jcl+2rgwt27b for <dnsext@core3.amsl.com>; Sat, 26 Feb 2011 15:42:02 -0800 (PST)
Received: from mx.ams1.isc.org (mx.ams1.isc.org [IPv6:2001:500:60::65]) by core3.amsl.com (Postfix) with ESMTP id A26993A67F2 for <dnsext@ietf.org>; Sat, 26 Feb 2011 15:42:02 -0800 (PST)
Received: from bikeshed.isc.org (bikeshed.isc.org [IPv6:2001:4f8:3:d::19]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (Client CN "bikeshed.isc.org", Issuer "ISC CA" (verified OK)) by mx.ams1.isc.org (Postfix) with ESMTPS id 3A2F15F9863; Sat, 26 Feb 2011 23:42:44 +0000 (UTC) (envelope-from marka@isc.org)
Received: from drugs.dv.isc.org (c211-30-172-21.carlnfd1.nsw.optusnet.com.au [211.30.172.21]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by bikeshed.isc.org (Postfix) with ESMTPSA id D4702216C1E; Sat, 26 Feb 2011 23:42:41 +0000 (UTC) (envelope-from marka@isc.org)
Received: from drugs.dv.isc.org (localhost [127.0.0.1]) by drugs.dv.isc.org (Postfix) with ESMTP id 9E59DB00438; Sun, 27 Feb 2011 10:42:37 +1100 (EST)
To: Edward Lewis <Ed.Lewis@neustar.biz>
From: Mark Andrews <marka@isc.org>
References: <a06240805c98db61801c2@[10.31.200.114]> <20110226003214.0E1BFAFA28D@drugs.dv.isc.org><a06240800c98ed0f7a8c5@[10.31.200.114]>
In-reply-to: Your message of "Sat, 26 Feb 2011 10:50:32 CDT." <a06240800c98ed0f7a8c5@[10.31.200.114]>
Date: Sun, 27 Feb 2011 10:42:37 +1100
Message-Id: <20110226234237.9E59DB00438@drugs.dv.isc.org>
Cc: dnsext@ietf.org
Subject: Re: [dnsext] Fwd: RFC 2308 & RFC 4035
X-BeenThere: dnsext@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsext>
List-Post: <mailto:dnsext@ietf.org>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 26 Feb 2011 23:42:03 -0000
In message <a06240800c98ed0f7a8c5@[10.31.200.114]>, Edward Lewis writes: > At 11:32 +1100 2/26/11, Mark Andrews wrote: > >Nothing worse than having asked for the AAAA record at 10:00 am. > >The zone administrator has to assume that AAAA queries will have > >been made prior to adding the AAAA records. This will almost > >certainly be the case if there were A queries. > > I think my question wasn't understood. > > Do cache implementers use the fact that the proof of no A record > coincidently shows there is also no AAAA record when processing a > subsequent AAAA query. (Meaning, there's no other entry for the AAAA > alredy in the cache.) > > If a cache does do this kind of proof by inference, what does the > implementer think about the situation in which there is a "race > condition" - that the proof of non-existence has been obviated by > actions outside of it's sphere? (Like the subsequent adding of the > AAAA set in the authority. We do this for NXDOMAIN today. If we ask for A foo.example and get back a NXDOMAIN then the cache gets asked for AAAA foo.example we use that NXDOMAIN. Using the NSEC/NSEC3 that matches the <qname,qclass> really no different. The much more interesting question is infering NXDOMAIN for a <qname,qclass> we havn't asked for. Named already does this when looking for DLV records when validating but is expected by all parties involved. Mark -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: marka@isc.org
- Re: [dnsext] Fwd: RFC 2308 & RFC 4035 George Barwood
- Re: [dnsext] Fwd: RFC 2308 & RFC 4035 Edward Lewis
- [dnsext] Fwd: RFC 2308 & RFC 4035 Edward Lewis
- Re: [dnsext] Fwd: RFC 2308 & RFC 4035 Brian Dickson
- Re: [dnsext] Fwd: RFC 2308 & RFC 4035 Edward Lewis
- Re: [dnsext] Fwd: RFC 2308 & RFC 4035 Paul Vixie
- Re: [dnsext] Fwd: RFC 2308 & RFC 4035 Mark Andrews
- Re: [dnsext] Fwd: RFC 2308 & RFC 4035 W.C.A. Wijngaards
- Re: [dnsext] Fwd: RFC 2308 & RFC 4035 Edward Lewis
- Re: [dnsext] Fwd: RFC 2308 & RFC 4035 Mark Andrews
- Re: [dnsext] Fwd: RFC 2308 & RFC 4035 W.C.A. Wijngaards
- Re: [dnsext] Fwd: RFC 2308 & RFC 4035 Edward Lewis
- Re: [dnsext] Fwd: RFC 2308 & RFC 4035 Edward Lewis
- Re: [dnsext] Fwd: RFC 2308 & RFC 4035 John Levine
- Re: [dnsext] Fwd: RFC 2308 & RFC 4035 Paul Vixie
- Re: [dnsext] Fwd: RFC 2308 & RFC 4035 John Levine
- Re: [dnsext] Fwd: RFC 2308 & RFC 4035 Paul Vixie
- Re: [dnsext] Fwd: RFC 2308 & RFC 4035 Edward Lewis