In article <[email protected]> you write: >I cannot speak for any other piece of software, but the way PowerDNS >Recursor uses connected UDP sockets to talk to authoritatives means >that the kernel already drops responses from wrong addresses, ...
Seems to me that would be true for any software that uses the usual BSD or linux socket calls that match the host and port on received packets with recently sent ones. I'm having trouble figuring out how I would even arrange to receive replies from the wrong host short of using a raw socket that collected all incoming UDP packets, which would make it hard to run anything else that uses UDP on the same machine with the DNS client. _______________________________________________ dns-operations mailing list [email protected] https://lists.dns-oarc.net/mailman/listinfo/dns-operations
