On Tue, Sep 09, 2008 at 04:19:47PM -0400, Ron Bonica wrote: > Thanks for this proposal. At his point, I will sit quietly for a while > and let the WG comment on whether they think that your proposed > alternative mitigation is adequate.
My view is that recommending closing open recursors is a way of recommending closing one possible DoS path. It does not close all of them, and it may not even close the path that is mostly used. It does close a path that has been observed in use. I am sceptical of the claim that those observations are either fabricated or somehow fraudulently generated. I therefore do not think the alternative mitigation is adequate reason not to go forward with the draft in question. A -- Andrew Sullivan [EMAIL PROTECTED] +1 503 667 4564 x104 http://www.commandprompt.com/ _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop