From owner-freebsd-stable@FreeBSD.ORG Tue Jul 17 11:36:09 2007 Return-Path: X-Original-To: freebsd-stable@freebsd.org Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 7F99316A40D for ; Tue, 17 Jul 2007 11:36:09 +0000 (UTC) (envelope-from tevans.uk@googlemail.com) Received: from hu-out-0506.google.com (hu-out-0506.google.com [72.14.214.231]) by mx1.freebsd.org (Postfix) with ESMTP id 0892113C4BA for ; Tue, 17 Jul 2007 11:36:08 +0000 (UTC) (envelope-from tevans.uk@googlemail.com) Received: by hu-out-0506.google.com with SMTP id 28so612450hub for ; Tue, 17 Jul 2007 04:36:07 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=googlemail.com; s=beta; h=domainkey-signature:received:received:subject:from:to:cc:in-reply-to:references:content-type:date:message-id:mime-version:x-mailer; b=jih0zSvB4WuPFo90y34Lyxaq3HS7nVMJZczSdqsOOwG/q7sczs6ZHPZtnRuR5wx/ejFTImOs0gNPMeXeS8l6OxwdbbGD898plCReoAa06X6lBTX8Fr20iNn41fyio8nzrg62rHkJkbZ4COOLpFQBmzfYV1gYznSIJdgHm6n/HEk= DomainKey-Signature: a=rsa-sha1; c=nofws; d=googlemail.com; s=beta; h=received:subject:from:to:cc:in-reply-to:references:content-type:date:message-id:mime-version:x-mailer; b=ssREqwgaxvNrdexSq0KvFDCYhXPfvFJaiSkqSBxuq83Gituk0iizKKarzvsN/WBQDyXy2zuzaP8xzfeTBQqfgaus9elQhSrZ0w1Mk+4bqh8IhBM8EXZRdNPXI71+fSd+Ir4buz92Aj40eSvANKnMF672wVNyD2aLP9uUFc3br2Q= Received: by 10.86.57.9 with SMTP id f9mr249718fga.1184672167688; Tue, 17 Jul 2007 04:36:07 -0700 (PDT) Received: from ?127.0.0.1? ( [217.206.187.79]) by mx.google.com with ESMTP id d24sm32463113nfh.2007.07.17.04.36.06 (version=SSLv3 cipher=RC4-MD5); Tue, 17 Jul 2007 04:36:07 -0700 (PDT) From: Tom Evans To: "Heiko Wundram (Beenic)" In-Reply-To: <200707171308.56260.wundram@beenic.net> References: <200707162319.41724.lofi@freebsd.org> <200707171106.30795.wundram@beenic.net> <469C9E56.8070705@vwsoft.com> <200707171308.56260.wundram@beenic.net> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-HiqRg6ppF6wQqoJev4Ae" Date: Tue, 17 Jul 2007 12:36:04 +0100 Message-Id: <1184672164.2017.12.camel@localhost> Mime-Version: 1.0 X-Mailer: Evolution 2.10.2 FreeBSD GNOME Team Port Cc: freebsd-stable@freebsd.org Subject: Re: FreeBSD violates RFC2870 [was: Re: Problems with named default configuration in 6-STABLE] X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 17 Jul 2007 11:36:09 -0000 --=-HiqRg6ppF6wQqoJev4Ae Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Tue, 2007-07-17 at 13:08 +0200, Heiko Wundram (Beenic) wrote: > On Tuesday 17 July 2007 12:47:50 Volker wrote: > > I've googled a bit. RFC 2870 says: > > > > 2.7 Root servers SHOULD NOT answer AXFR, or other zone transfer, > > queries from clients other than other root servers. This > > restriction is intended to, among other things, prevent > > unnecessary load on the root servers as advice has been heard > > such as "To avoid having a corruptible cache, make your server a > > stealth secondary for the root zone." The root servers MAY put > > the root zone up for ftp or other access on one or more less > > critical servers. >=20 > Read up on: >=20 > http://www.ietf.org/rfc/rfc2119.txt >=20 > which specifically says that "should not" means "recommended not to", but= not=20 > explicitly forbidden. So, this behaviour is not in violation of RFC2870, = just=20 > discouraged by it. If the (respective) roots offer it, perfect. >=20 Relying on a "SHOULD NOT" being ignored is a Bad Thing. --=-HiqRg6ppF6wQqoJev4Ae Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (FreeBSD) iD8DBQBGnKmklcRvFfyds/cRAlcnAJ9VrsYb8mX4gn9eiP1ZbgOOhWUqzgCfYc8r 0SHE+zIF0AeXjV/8R2dq818= =nQ0m -----END PGP SIGNATURE----- --=-HiqRg6ppF6wQqoJev4Ae--