On Tue, Feb 24, 2015 at 3:28 PM, Andrew Sullivan <[email protected]> wrote:
> On Tue, Feb 24, 2015 at 12:06:06PM -0800, Joel Jaeggli wrote: > > Should we consider recommendations with respect to treatment of logging > or storage of queries or the extent to which such queries should be > protected? > > > > IMO, No. The text as it stands says, "This could result in logs." > There are lots of operational reasons to log, and the fact that your > leaking queries could result in information about your system being > made public is a reason _not to leak_ in the first place. That has > nothing to do with operating AS112, which is infrastructure to sink > traffic that never should have made it to the Net in the first place. > > Fair point. I asked for it as an educational point, which hopefully the operators know to protect logs already. I'm sure the folks leaking DNS data don't have a clue their queries are going out, may be logged, and wouldn't know they were supposed to fix this leakage (or how) it unless someone told them. I'll remove the discuss based on the updated text. Thank you. Kathleen > Best regards, > > A > > > -- > Andrew Sullivan > [email protected] > -- Best regards, Kathleen
_______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
