IETF Logo Mail Archive

Re: [DNSOP] Fwd: New Version Notification for draft-ogud-dnsop-any-notimp-00.txt

Tony Finch <dot@dotat.at> Fri, 06 March 2015 19:01 UTC

Return-Path: <fanf2@hermes.cam.ac.uk>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B450B1A1BD4 for <dnsop@ietfa.amsl.com>; Fri, 6 Mar 2015 11:01:10 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.511
X-Spam-Level:
X-Spam-Status: No, score=-1.511 tagged_above=-999 required=5 tests=[BAYES_50=0.8, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Kr1nNuHiTGOA for <dnsop@ietfa.amsl.com>; Fri, 6 Mar 2015 11:01:08 -0800 (PST)
Received: from ppsw-51.csi.cam.ac.uk (ppsw-51.csi.cam.ac.uk [131.111.8.151]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A4F031A1B6D for <dnsop@ietf.org>; Fri, 6 Mar 2015 11:01:08 -0800 (PST)
X-Cam-AntiVirus: no malware found
X-Cam-ScannerInfo: http://www.cam.ac.uk/cs/email/scanner/
Received: from hermes-1.csi.cam.ac.uk ([131.111.8.51]:56612) by ppsw-51.csi.cam.ac.uk (smtp.hermes.cam.ac.uk [131.111.8.157]:25) with esmtpa (EXTERNAL:fanf2) id 1YTxUg-0003F8-Z5 (Exim 4.82_3-c0e5623) (return-path <fanf2@hermes.cam.ac.uk>); Fri, 06 Mar 2015 19:01:06 +0000
Received: from fanf2 by hermes-1.csi.cam.ac.uk (hermes.cam.ac.uk) with local id 1YTxUg-0000PZ-Qr (Exim 4.72) (return-path <fanf2@hermes.cam.ac.uk>); Fri, 06 Mar 2015 19:01:06 +0000
Date: Fri, 06 Mar 2015 19:01:06 +0000
From: Tony Finch <dot@dotat.at>
X-X-Sender: fanf2@hermes-1.csi.cam.ac.uk
To: Olafur Gudmundsson <olafur@cloudflare.com>
In-Reply-To: <20150306182444.GA50555@PorcupineTree.nominum.com>
Message-ID: <alpine.LSU.2.00.1503061856010.10193@hermes-1.csi.cam.ac.uk>
References: <20150306172715.24305.58649.idtracker@ietfa.amsl.com> <CAN6NTqw4n_mTqjGDsOc4kT3fvm1PaCWKt+AUPw+4GevQqG3Ymw@mail.gmail.com> <20150306182444.GA50555@PorcupineTree.nominum.com>
User-Agent: Alpine 2.00 (LSU 1167 2008-08-23)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"
Sender: Tony Finch <fanf2@hermes.cam.ac.uk>
Archived-At: <http://mailarchive.ietf.org/arch/msg/dnsop/XF-7_U_UtRmZYCyf56_ZnTFjDnc>
Cc: dnsop@ietf.org
Subject: Re: [DNSOP] Fwd: New Version Notification for draft-ogud-dnsop-any-notimp-00.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Mar 2015 19:01:10 -0000

Ralf Weber <dns@fl1ger.de> wrote:

> I do support this. But it will not stop reflection attacks. Also why have
> you limited the this to authoritative servers?

Yes, to all these points. Since most of the confusing beviour of ANY
occurs on recursive servers it would make sense to deprecate it there
as well.

BTW, PHP's dns_get_record function defaults to ANY.
http://php.net/manual/en/function.dns-get-record.php

Slightly non-serious question: has anyone experimented with returning an
answer with TYPE=255 in response to an ANY query? If so, what broke?

Tony.
-- 
f.anthony.n.finch  <dot@dotat.at>  http://dotat.at/
Forties, Cromarty, Forth: Southwest 6 to gale 8, occasionally severe gale 9.
Rough or very rough. Occasional rain. Good, occasionally moderate.

v2.23.0 | Report a Bug | By Email