On Sep 13, 2017, at 1:19 PM, John Levine <jo...@taugh.com> wrote: > I concur with Mark that while localhost.<foo> is a problem, > <foo>.localhost is not. I've occasionally used that hack to pass > traffice to various servers running on 127/8 addresses other than > 127.0.0.1.
So we should expose end-users to attack because it's "occasionally" convenient for you to do this hack?
_______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop