--On lördag, lördag 10 feb 2007 21.50.43 +0100 Paul Wouters <[EMAIL PROTECTED]> wrote:
> On Sat, 10 Feb 2007, Pekka Savola wrote:
>
>> As Bert mentioned in the next message, the risk of outdated (and therefor
>> out-of-sync) roots is real.
>
> I just compared the root zone as RedHat shipped it on Fri 07 Sep 2001,
> with the root zone as published on root-servers.org, and only B and J
> are different. So even using a 6 year old root zone will work fine in
> the case of a flat out successfull attack against all root servers. I
> will buy a beer for everyone on this list who doesn't have 6 year old
> or newer root zone lying around within two hops of their desktop.
The root zone is slightly more than the hint file. You are confusing them.
(some output edited away for brevity...)
ftp> ls
500 'EPSV': command not understood.
227 Entering Passive Mode (198,41,0,6,89,237)
150 Opening ASCII mode data connection for directory listing.
total 184
-rw-r--r-- 1 9998 213 2517 Jan 28 2004 named.root
-rw-r--r-- 1 9998 213 18051 Feb 10 12:06 root.zone.gz
226 Transfer complete.
The named.cache file does not change very often, not since 2004 according
to this list. The root zone changes more often, like every day.
--
Måns Nilsson Systems Specialist
+46 70 681 7204 cell KTHNOC
+46 8 790 6518 office MN1334-RIPE
I didn't order any WOO-WOO ... Maybe a YUBBA ... But no WOO-WOO!
pgpzfw1o5sQwn.pgp
Description: PGP signature
_______________________________________________ DNSOP mailing list [email protected] https://www1.ietf.org/mailman/listinfo/dnsop
