Greetings again. Section 6 says: The directive in Section 4 that only NoError and NXDomain responses should invalidate any previously associated answer stems from the fact that no other RCODEs which a resolver normally encounters makes any assertions regarding the name in the question or any data associated with it. This comports with existing resolver behavior where a failed lookup (say, during pre-fetching) doesn't impact the existing cache state. Some authoritative servers operators have said that they would prefer stale answers to be used in the event that their servers are responding with errors like ServFail instead of giving true authoritative answers. Implementers MAY decide to return stale answers in this situation.
This last sentence feels wrong to me, as does the desire of "some authoritative servers operators". As the rest of the document explains, stale answers are meant to be served when authoritative servers cannot be reached, not whey they are reachable but giving funny answers. I propose that the last sentence be changed to: However, implementations MUST NOT send stale data if they have received any answer from an authoritative server. --Paul Hoffman _______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
