On 2020-09-30 10:25, Tim Bray via mailop wrote:
Blocking TCP a way to block zone transfers, but a rubbish one.
It may also be seen as a method by which to reduce the impact of DNS amplification attacks. But also a poor one.
I'd suggest they probably just have a default deny policy and didn't know what they were doing. Or opening another port just too much admin.
That's what I'd expect most of the time. Stupidity or bureaucracy. Oh, right, they're usually synonymous.
_______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
