This was the original proposal, the drawback is that resolvers to not cache the answer, and to make things worse they ask ALL NS addresses for listed domain thus it acts as a DDoS against the domain in question.
Olafur On Mon, Aug 7, 2017 at 7:14 AM, Ray Bellis <[email protected]> wrote: > Having looked at this a few months ago when one of our partners was > (briefly) returning NOTIMP for ANY queries, I find myself wondering why > this isn't discussed in the draft? > > The draft does talk about *new* RCODEs, but not existing ones. > > My reading of RFC 1035 is that it would be a perfectly appropriate > response from a server that doesn't support ANY. > > Unfortunately the retry semantics of DNS are not well specified and > therefore implementation differences may occur. If as a result NOTIMP > is really not usable then IMHO this should also be documented. > > Ray > > _______________________________________________ > DNSOP mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/dnsop >
_______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
