From owner-freebsd-stable Thu Oct 4 3: 3:53 2001 Delivered-To: freebsd-stable@freebsd.org Received: from lozen.uit.no (lozen.uit.no [129.242.5.254]) by hub.freebsd.org (Postfix) with ESMTP id C46D337B401 for ; Thu, 4 Oct 2001 03:03:48 -0700 (PDT) Received: from joseph.cc.uit.no (joseph.cc.uit.no [129.242.6.242]) by lozen.uit.no (8.11.2/8.11.2) with ESMTP id f94A3fq29005; Thu, 4 Oct 2001 12:03:42 +0200 (METDST) Received: from boyd.cc.uit.no (boyd.cc.uit.no [129.242.6.121]) by joseph.cc.uit.no (8.10.1/8.10.1) with ESMTP id f94A3fu06481; Thu, 4 Oct 2001 12:03:41 +0200 (METDST) Received: from boyd.cc.uit.no (ingeborg@localhost) by boyd.cc.uit.no (8.11.2/8.11.2) with ESMTP id f94A3ex15230; Thu, 4 Oct 2001 12:03:40 +0200 Message-Id: <200110041003.f94A3ex15230@boyd.cc.uit.no> X-Mailer: exmh version 2.5 07/13/2001 with nmh-1.0.4 To: =?iso-8859-1?Q?David_Sieb=F6rger?= Cc: freebsd-stable@FreeBSD.ORG Subject: Re: sdflkj In-reply-to: Your message of "Thu, 04 Oct 2001 11:12:04 +0200." <20011004111204.A7847@rucus.ru.ac.za> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Date: Thu, 04 Oct 2001 12:03:40 +0200 From: Ingeborg Hellemo Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG drs-stable@rucus.ru.ac.za said: > On Thu 2001-10-04 (08:59), Ceri wrote: > > On Wed, Oct 03, 2001 at 05:16:20PM -0700, Michael Sierchio said: > > > > > My apologies. My ISP's absolute refusal to delegate reverse entries > > > for my domain and /29 net is the problem. They gave me CNAME > > entries > > > instead of PTR records > > > > Umm, you can't delegate reverse DNS for a /29 _without_ using CNAMEs. > Not true. While the use of CNAMEs is suggested by RFC 2317, NS > records can be used too. The technique is described at: > http://homepages.tesco.net./~J.deBoynePollard/FGA/avoid-rfc-2317-delega > tion.html Do _not_ use this technique! Cite from "The document does NOT describe a valid DNS setup. It is simply illegal. Please, completely ignore this setup. Following the ignorant example on your site would lead to that machine being authoritative for the in-addr.arpa. domain. Only the [a-i].root-servers.net. should be authoritative for those. This set-up will leak incorrect/dangerous/poisonous info through authoritative & additional sections. For a provider with old caches (those that will cache authoritative/additional section) that happen to have cached yours, has the rest of the reverse name-space unavailable during TTL of the RR's in the sections. Bad. Very very bad. Roy Arends Nominum " --Ingeborg -- Ingeborg Østrem Hellemo -- ingeborg@cc.uit.no (Univ. of Tromsø, Norway) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message