ttl for negative responses is not following rfc2308

I test BIND 9.7.2-P2 and thus find the ttl for negative responses is not following rfc2308, and instead check the $TTL. If the TTL is smaller than 3h, negative ttl is set to the TTL, otherwise to check mimum TTL. If the value is smaller than 3h, negative ttl is set to the ttl, otherwise set to

Re: ttl for negative responses is not following rfc2308

On Aug 19 2011, 刘明星：） wrote: I test BIND 9.7.2-P2 and thus find the ttl for negative responses is not following rfc2308, and instead check the $TTL. If the TTL is smaller than 3h, negative ttl is set to the TTL, otherwise to check mimum TTL. If the value is smaller than 3h, negative ttl is set

RE: client ... query (cache) './NS/IN' denied:

I know... That is why I have been posting the IP address. I now block 3980 IP address from our NS servers. Most of them attempt to ssh to our www server and fail, when they do that, I block the IP. Some the same IP's must have been running the DoS since they are no longer able to do so on