In message <alpine.osx.2.11.1610181836450.35...@ary.qy>, "John R Levine" writes:
> >>> No. They slow the leaks. They do not STOP the leaks. They depend on
> >>> leaks to work.
> >> With a 24 hour TTL on the root zone, it ain't going to leak very much.
> > The practical TTL is 3 hours.
> How come? This is a real question, unbound appears to believe the 24 hour
Because that is what RFC 2308 says to do with negative answers.
> > But dummy stub zones (which is what is being I'm requesting) require
> > changes in the root zone to add a insecure delegation to not break
> > other things. That requires IANA to be instructed to do so.
> Hm, I see your point.
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org
DNSOP mailing list