On 04/07/2017 11:40, Tim Wicinski wrote: > > On 7/4/17 6:13 AM, Paul Wouters wrote: >> >> Although, we should also be a bit careful not to create a new ANY >> type query that will get abused for amplification, so it should >> really all have source verified IP transports (DNS-COOKIES, TCP, >> etc) > > The is good guidance, and some wording like this would be useful in > the qtypes draft.
I'd rather not constraint this to source verified transports. There's a limit of 7 additional QTYPEs in the draft, which could be trivially reduced to 3 (with little effect on the functionality) if that would mitigate concerns about amplification. Ray _______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
