Re: [DNSOP] [dnsext] Re: Computerworld apparently has changed DNS protocol

Duane Wessels <wessels@dns-oarc.net> Wed, 11 November 2009 17:36 UTC

Return-Path: <wessels@dns-oarc.net>
X-Original-To: dnsop@core3.amsl.com
Delivered-To: dnsop@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 2788D3A6AF1 for <dnsop@core3.amsl.com>; Wed, 11 Nov 2009 09:36:44 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.737
X-Spam-Level:
X-Spam-Status: No, score=-1.737 tagged_above=-999 required=5 tests=[AWL=0.862, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6v7GNRIAIeSP for <dnsop@core3.amsl.com>; Wed, 11 Nov 2009 09:36:43 -0800 (PST)
Received: from mail.dns-oarc.net (in1.dns-oarc.net [149.20.58.5]) by core3.amsl.com (Postfix) with ESMTP id 7D3203A6821 for <dnsop@ietf.org>; Wed, 11 Nov 2009 09:36:43 -0800 (PST)
Received: by mail.dns-oarc.net (Postfix, from userid 11202) id 04D4ABE1B6; Wed, 11 Nov 2009 17:37:11 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1]) by mail.dns-oarc.net (Postfix) with ESMTP id EC1D9BE1B3; Wed, 11 Nov 2009 17:37:11 +0000 (UTC) (envelope-from wessels@dns-oarc.net)
Date: Wed, 11 Nov 2009 17:37:11 +0000
From: Duane Wessels <wessels@dns-oarc.net>
To: Florian Weimer <fweimer@bfk.de>
In-Reply-To: <82639htner.fsf@mid.bfk.de>
Message-ID: <alpine.BSF.2.00.0911111735190.73921@in1.dns-oarc.net>
References: <200911041858.TAA24009@TR-Sys.de> <FD44BF39-5B62-4689-AC6D-8DFFAF340EA1@icsi.berkeley.edu> <20091104192634.GA31981@vacation.karoshi.com.> <d791b8790911041141k71066fa9nede54d5dff9394fa@mail.gmail.com> <AF9E632C-C470-4EA8-9BB4-BF144D208619@ICSI.Berkeley.EDU> <alpine.BSF.2.00.0911110625230.73921@in1.dns-oarc.net> <82639htner.fsf@mid.bfk.de>
User-Agent: Alpine 2.00 (BSF 1167 2008-08-23)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"; format="flowed"
Cc: namedroppers@ops.ietf.org, dnsop@ietf.org
Subject: Re: [DNSOP] [dnsext] Re: Computerworld apparently has changed DNS protocol
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsop>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 11 Nov 2009 17:36:44 -0000

On Wed, 11 Nov 2009, Florian Weimer wrote:

> Have you installed any trust anchors in the resolver?  (I don't think
> so, the packet numbers are a bit on the lower side for that.)

I didn't.  I was mostly interested in the "DURZ" case where the root
zone becomes signed but people aren't configuring trust anchors.

And I'm only looking at the traffic between resolver and authorities.

What do you mean by "packet numbers?"  Number of packets or size of packets?

Duane W.