Andrew Sullivan wrote:
It seems to me true, from experience and from anecdote, that DNS out
at endpoints has all manner of failure modes that have little to do
with the protocol and a lot to do with decisions that implementers and
operators made, either on purpose or by accident.
...
This suggests to me that there will be an opportunity to improve some
of the operations in the wild,
...
If you have a cache of these examples, I'd be delighted to see them.
One could imagine producing a BCP about common DNS implementation and operation
errors or, more positively, recommendations for implementation and operation.
One could equally imagine some group actively pursuing improvements to the major
implementations (and operations) that have problems.
I seem to recall seeing small forays in this direction, in the past. Your query
might encourage an organized effort that follows through with making actual DNS
operation -- as opposed to attack or defense of the protocol -- provide the
needed level of *end-to-end* reliability.
d/
--
Dave Crocker
Brandenburg InternetWorking
bbiw.net
_______________________________________________
Ietf@xxxxxxxx
https://www.ietf.org/mailman/listinfo/ietf