In message <[email protected]>, "John R Levine" writes: > >>> No. They slow the leaks. They do not STOP the leaks. They depend on > >>> leaks to work. > >> > >> With a 24 hour TTL on the root zone, it ain't going to leak very much. > > > > The practical TTL is 3 hours. > > How come? This is a real question, unbound appears to believe the 24 hour > TTL.
Because that is what RFC 2308 says to do with negative answers. > > But dummy stub zones (which is what is being I'm requesting) require > > changes in the root zone to add a insecure delegation to not break > > other things. That requires IANA to be instructed to do so. > > Hm, I see your point. > > R's, > John -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: [email protected] _______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
