From: "Michael O'Keefe" <[EMAIL PROTECTED]>
Likewise, how hard would it be to do DNS-over-SSL for zone transfers
(which usually end up going over TCP anyway due to zones generally not
fitting inside a single UDP packet)?
Actually, it's not a "single UDP packet" but a DNS specified 512-byte
packet. UDP can, of course, handle payloads up near 65507 long
Unless some network in between has a maximum packet size set. I remember
being taught to assume 8K is the max that will get through using UDP.
Gabe
--
[email protected]
http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
