IETF Logo Mail Archive

[dnsop] Another example of AAAA misbehavior

"Barber, Piet" <pbarber@verisign.com> Thu, 25 March 2004 23:44 UTC

Received: from darkwing.uoregon.edu (root@darkwing.uoregon.edu [128.223.142.13]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id SAA03406 for <dnsop-archive@lists.ietf.org>; Thu, 25 Mar 2004 18:44:40 -0500 (EST)
Received: from darkwing.uoregon.edu (majordom@localhost [127.0.0.1]) by darkwing.uoregon.edu (8.12.11/8.12.11) with ESMTP id i2PLqOJ4003443 for <dnsop-outgoing@darkwing.uoregon.edu>; Thu, 25 Mar 2004 13:52:24 -0800 (PST)
Received: (from majordom@localhost) by darkwing.uoregon.edu (8.12.11/8.12.11/Submit) id i2PLqOiP003438 for dnsop-outgoing; Thu, 25 Mar 2004 13:52:24 -0800 (PST)
Received: from falcon.verisign.com (falcon.verisign.com [216.168.239.71]) by darkwing.uoregon.edu (8.12.11/8.12.11) with ESMTP id i2PLqNkO002994 for <dnsop@lists.uoregon.edu>; Thu, 25 Mar 2004 13:52:23 -0800 (PST)
Received: from vsvapostalgw3.vcorp.ad.vrsn.com (vsvapostalgw3.vcorp.ad.vrsn.com [10.170.12.61]) by falcon.verisign.com (8.12.10/8.12.10) with ESMTP id i2PLr8op027571; Thu, 25 Mar 2004 16:53:08 -0500 (EST)
Received: from verisign.com (10.131.111.34 [10.131.111.34]) by vsvapostalgw3.vcorp.ad.vrsn.com with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2657.72) id GNRGB413; Thu, 25 Mar 2004 16:52:15 -0500
Message-ID: <4063548B.4040401@verisign.com>
Date: Thu, 25 Mar 2004 16:52:11 -0500
From: "Barber, Piet" <pbarber@verisign.com>
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.6) Gecko/20040116
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: David Meyer <dmm@1-4-5.net>
CC: dnsop@lists.uoregon.edu
Subject: [dnsop] Another example of AAAA misbehavior
References: <20040323180908.GA2897@1-4-5.net>
In-Reply-To: <20040323180908.GA2897@1-4-5.net>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Sender: owner-dnsop@lists.uoregon.edu
Precedence: bulk
Reply-To: "Barber, Piet" <pbarber@verisign.com>
Content-Transfer-Encoding: 7bit

Although servfail rcodes have already been mentioned in this draft, I 
would like to add this nice little gem of DNS. This name server responds 
to AAAA queries in a particularly odd way:

1) 'aa' bit + SERVFAIL.
2) Reflexive CNAME.
3) answer section given, despite the SERVFAIL

dig @ns.intouch.net ns.intouch.net aaaa +norecurs

; <<>> DiG 9.2.1 <<>> @ns.intouch.net ns.intouch.net aaaa +norecurs
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 58716
;; flags: qr aa; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;ns.intouch.net.                        IN      AAAA

;; ANSWER SECTION:
ns.intouch.net.         3600    IN      CNAME   blade230.intouch.net.
blade230.intouch.net.   3600    IN      CNAME   blade230.intouch.net.

;; Query time: 92 msec
;; SERVER: 212.26.192.1#53(ns.intouch.net)
;; WHEN: Wed Mar 24 16:17:16 2004
;; MSG SIZE  rcvd: 69

David Meyer wrote:

>All,
>
>This is a WG Last Call (WGLC) for comments on "Common Misbehavior
>against DNS Queries for IPv6 Addresses",
>
>http://www.ietf.org/internet-drafts/draft-ietf-dnsop-misbehavior-against-aaaa-00.txt
>
>Please review the document carefully, and send your feedback to
>the list.  Please also indicate whether or not you believe that
>this document is ready to go to the IESG for Informational.
>
>The WGLC will end on Wednesday, 07 April 2004, at 1500 PST.
>
>Thanks, 
>
>Rob and Dave
>
>.
>dnsop resources:_____________________________________________________
>web user interface: http://darkwing.uoregon.edu/~llynch/dnsop.html
>mhonarc archive: http://darkwing.uoregon.edu/~llynch/dnsop/index.html
>  
>

.
dnsop resources:_____________________________________________________
web user interface: http://darkwing.uoregon.edu/~llynch/dnsop.html
mhonarc archive: http://darkwing.uoregon.edu/~llynch/dnsop/index.html

v2.23.0 | Report a Bug | By Email