On Tue, Nov 17, 2020 at 10:51:45PM +0000, Tony Finch <[email protected]> wrote a message of 32 lines which said:
> if the domain points at AS112 then almost anyone might receive the > QNAME leakage; if the domain is unregistered and the resolver does > qmin then there's less leakage. > > This is really a general issue with split horizon DNS: whoever is > assigning or giving advice about local/internal DNS needs to make > it clear that the names aren't private and will leak. Note that this is one of the reasons why draft-bortzmeyer-dname-root was not a success: some people objected that AS 112 is not to be trusted with "private" names. _______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
