Bug#947029: marked as done (unbound: Set EDNS UDP buffer size to avoid fragmentation)

Sun, 26 Jan 2020 17:39:18 -0800 

Your message dated Sun, 26 Jan 2020 20:26:46 -0500
with message-id <[email protected]>
and subject line Re: unbound: Set EDNS UDP buffer size to avoid fragmentation
has caused the Debian Bug report #947029,
regarding unbound: Set EDNS UDP buffer size to avoid fragmentation
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
947029: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947029
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Source: unbound
Version: Set EDNS UDP buffer size to avoid fragmentation
Severity: normal

Hello,

Please deliver a default configuration which prevents fragmentation
of UDP EDNS datagrams.

DNS Flag Day 2020 is focusing "on the operational and security
problems in DNS caused by Internet Protocol packet fragmentation."

https://dnsflagday.net/

They recommend:

server:
  edns-buffer-size: 1232

FYI, it seems the DNS Flag Day people involve some big players.  They
are interested in removing work-arounds from their own systems which
provide interoperability with other people's poorly configured or
poorly operating DNS servers.

Regards,
Karl

-- System Information:
Debian Release: 9.11
  APT prefers oldstable
  APT policy: (500, 'oldstable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-11-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

--- End Message ---
--- Begin Message --- 
The upstream Unbound developers are aware of the proposal to make
changes to the default EDNS buffer size. If consensus is reached on
whether a change is needed and upstream implements a change to the
default, Debian will ship the changed default.

-- 
Robert Edmonds
[email protected]

--- End Message ---

Reply via email to