At 3:33 PM +0100 2003/02/07, Bruce Campbell wrote:
You may wish to refer to the dnsop archives, and the 'Should a nameserver know about itself?' thread, starting at:
http://www.cafax.se/dnsop/maillist/2001-05/msg00009.html
( I am not expressing an opinion of the RIPE NCC, just work I did at my previous employer )
I read through this entire thread. It doesn't seem to have anything to do with whether or not an authoritative-only server should respond with a referral to the root zone when asked a question that it is not authoritative for. So far, the best argument I've seen for returning anything else, is for returning a SERVFAIL, in <http://ops.ietf.org/lists/namedroppers/namedroppers.2002/msg00530.html>. However, I am not yet convinced. IMO, if I ask a server a question and it gives me a root referral, then I know that name is not served by that machine. If it gives me a SERVFAIL instead, then I am left wondering just how b0rken it is, and whether or not it should be ignored for all future queries of any type or question. -- Brad Knowles, <brad.knowles@skynet.be> "They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety." -Benjamin Franklin, Historical Review of Pennsylvania. GCS/IT d+(-) s:+(++)>: a C++(+++)$ UMBSHI++++$ P+>++ L+ !E-(---) W+++(--) N+ !w--- O- M++ V PS++(+++) PE- Y+(++) PGP>+++ t+(+++) 5++(+++) X++(+++) R+(+++) tv+(+++) b+(++++) DI+(++++) D+(++) G+(++++) e++>++++ h--- r---(+++)* z(+++)