See http://www.ietf.org/internet-drafts/draft-eastlake-dnsext-cookies-02.txt . Donald -----Original Message----- From: secdir-bounces@xxxxxxx [mailto:secdir-bounces@xxxxxxx] On Behalf Of Stephen Hanna Sent: Monday, September 24, 2007 3:52 PM To: ietf@xxxxxxxx; dnsop-chairs@xxxxxxxx; iesg@xxxxxxxx; secdir@xxxxxxx; Joao_Damas@xxxxxxx; fneves@xxxxxxxxxxx Subject: [secdir] secdir review ofdraft-ietf-dnsop-reflectors-are-evil-04.txt ... Finally, I wonder whether other more fundamental techniques for addressing the problem have been explored. For instance, if DNS clients were required to perform a simple handshake before a DNS server sent a long response, fake requests would provide little amplification. ... Thanks, Steve _______________________________________________ secdir mailing list secdir@xxxxxxx https://mailman.mit.edu/mailman/listinfo/secdir _______________________________________________ Ietf@xxxxxxxx https://www1.ietf.org/mailman/listinfo/ietf