On Fri, Feb 09, 2007 at 03:20:59PM +0100, Stephane Bortzmeyer wrote:
> I was surprised that there is apparently no formal document, either
> RFC or else, on this subject "Local copy of the root zone considered
> harmful | good". Did I miss something?
Depending on the ratio of bandwidth available to miscreants and how widely
dispersed the root-servers are, the advice would probably alternate between
having and not having a local copy of the root zone.
Having a local copy brings the risk of getting outdated, against the benefit
of better service.
The risk of getting outdated is more or less fixed, whereas the risk of
people being able to effectively DoS all the root-servers varies based on
the ratio mentioned above.
If, for example, ADSL were to be supplanted by technology with a far larger
upstream, I'd be worried a lot more than I am now.
So the best advice is probably not fixed, and should therefore not be set in
stone.
Bert
--
http://www.PowerDNS.com Open source, database driven DNS Software
http://netherlabs.nl Open and Closed source services
_______________________________________________
DNSOP mailing list
[email protected]
https://www1.ietf.org/mailman/listinfo/dnsop
