On Thu, 7 Apr 2022 at 19:44, Joe Abley <[email protected]> wrote: > > On Apr 7, 2022, at 21:10, Paul Vixie <[email protected]> > wrote: > > > but it seems to me you'd be better off with a zero-length option called > > SERIAL which if set in the query causes the SOA of the answer's zone to be > > added to the authority section (similar to an RFC 2308 negative proof) and > > which option would only be echoed in the answer's OPT if the option was > > supported. you'd want to specify that the SOA in this case is not optional > > and that its truncation would cause the TC bit to be set. > > That sounds like a lovely and clean way to do this. I like it. >
This is an excellent idea, requiring trivial client-side support. PV did not say so, but I would expect the SOA's RRSIG to be included in the response. --Dick > Joe > _______________________________________________ > DNSOP mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/dnsop _______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
