From owner-freebsd-security  Thu Jun  4 23:30:55 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id XAA16593
          for freebsd-security-outgoing; Thu, 4 Jun 1998 23:30:55 -0700 (PDT)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from arc.netlab.sk (arc.netlab.sk [195.168.1.2])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id XAA16582
          for <freebsd-security@FreeBSD.ORG>; Thu, 4 Jun 1998 23:30:39 -0700 (PDT)
          (envelope-from palo.adamec@tecton.sk)
Received: from PCNTWS1 (ba66.netlab.sk [195.168.14.66])
	by arc.netlab.sk (8.8.8/8.8.7) with SMTP id IAA05815
	for <freebsd-security@FreeBSD.ORG>; Fri, 5 Jun 1998 08:30:29 +0200 (CEST)
	(envelope-from palo.adamec@tecton.sk)
Received: by PCNTWS1 with Microsoft Mail
	id <01BD905D.02DC1D20@PCNTWS1>; Fri, 5 Jun 1998 08:36:19 +0200
Message-ID: <01BD905D.02DC1D20@PCNTWS1>
From: Pavol Adamec <palo.adamec@tecton.sk>
To: "freebsd-security@FreeBSD.ORG" <freebsd-security@FreeBSD.ORG>
Subject: Re: /usr/sbin/named
Date: Fri, 5 Jun 1998 08:35:27 +0200
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from quoted-printable to 8bit by hub.freebsd.org id XAA16584
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

sthaug@nethelp.no wrote :

> - Normal DNS queries using TCP are perfectly legitimate.
> - The spec states that if an answer is truncated (TC bit set), the
>   query *should* be retried using TCP instead of UDP.

As for I know, this is not the only case. O'Reilly's book on BIND states that some DNS implementations use __ONLY__ TCP (I thing AIX was one of them). 

Paul

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe security" in the body of the message