_______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
one thing to note is that when the server is authoritative for more than
one zone, a cname that crosses from one such zone to another is allowed
by 1035 to be chased. however, the resolver has no reason to accept
out-of-zone records, since it cannot be sure that a new query in the
bailiwick of the second zone would be answered the same way (or by the
same server.) after kashpureff, we ignore the out-of-zone data and
re-fetch it. this strongly calls for an update to 1035, since akamai and
other CDN's are sending multi-zone cname chains, and they need to know
that they should not do that, and also, resolver implementers need to
know that they should be stripping any answer from the response whose
owner name is not in-bailiwick with their QNAME.
- Re: [DNSOP] tdns, 'hello-dns' progress, feedback... Paul Hoffman
- Re: [DNSOP] tdns, 'hello-dns' progress, feedback... Evan Hunt
- Re: [DNSOP] tdns, 'hello-dns' progress, feed... Mukund Sivaraman
- Re: [DNSOP] tdns, 'hello-dns' progress, ... Evan Hunt
- Re: [DNSOP] tdns, 'hello-dns' progr... Mukund Sivaraman
- Re: [DNSOP] tdns, 'hello-dns' progress, feedback... Matthew Pounsett
- Re: [DNSOP] [Ext] Re: tdns, 'hello-dns' pro... Edward Lewis
- Re: [DNSOP] tdns, 'hello-dns' progress, feedback requeste... 神明達哉
- Re: [DNSOP] tdns, 'hello-dns' progress, feedback requeste... Tony Finch
- Re: [DNSOP] tdns, 'hello-dns' progress, feedback req... bert hubert
- Re: [DNSOP] tdns, 'hello-dns' progress, feedback... Paul Vixie
- Re: [DNSOP] tdns, 'hello-dns' progress, feedback requeste... Robert Edmonds
- Re: [DNSOP] tdns, 'hello-dns' progress, feedback requeste... Florian Weimer
