On Wed, Dec 03, 2003 at 09:53:37AM -0800, Adam McKenna wrote: > > On Wed, Dec 03, 2003 at 09:48:44AM -0800, Randy Bush wrote: > > > How can delegating in-addr.arpa on a per-ip basis be any different or worse > > > than delegating it using an rfc2317 scheme? > > > > consider the label of the ns rr to delegate only 1.2.3.42 > > Do you mean ns.42.3.2.1.in-addr.arpa? I still don't see what's wrong with > the following, or how it leads to cache poisoning or leaky name space. > > 42.3.2.1.in-addr.arpa IN NS ns.42.3.2.1.in-addr.arpa. > ns.42.3.2.1.in-addr.arpa IN A 5.6.7.86
Eight hours later, and I'm still waiting for a reply on this. Were the original attacks by Pete Ehlke warranted, or would he care to retract his statements? --Adam