-----BEGIN PGP SIGNED MESSAGE-----
On 2004-05-17, at 00.22, Dean Anderson wrote:
On Sun, 16 May 2004, Thomas Bocek wrote:
I’m confused with the fact than the number of root servers is limited
From RFC 3226:
"The current number of root servers is limited to 13 as that is the
number of name servers and their address records that fit in one
answer for a SOA record. If root servers start advertising A6 or KEY
then the answer for the root NS records will not fit in a single
message, resulting in a large number of TCP query connections to the
A query send to one of the root servers with a long name (length 255)
shows that the answer is 511 bytes, returning one A and 13 NS records.
My question is: Why are all 13 NS returned?
This dubious anycast configuration was discussed and "approved" by the
NAMEDROPPERS Working Group in late November, 2002.
To the best of my knowledge there where root-servers anycasted way
before this date. And I have no idea why the namedroppers mailinglist
(or the IETF for that matter) would have to approve how the
root-servers are operated?
Unfortunately for the
anycast discussion, the list then became distracted by discussions
concerning procedural irregularities involving the AXFR-clarify Draft,
which would have altered the DNS AXFR and IXFR protocol to conform to
non-standard ISC/BIND implementation, despite a number of other
implementations being able to follow the AXFR and IXFR specifications.
This quickly developed into a discussion regarding abuse by the list
administrator (Randy Bush) with respect to Dan Bernstein, and so the
anycast discussion was abandoned.
As the IETF list members are perhaps unaware, the charges of abuse by
and ISC-promoters is hardly new. It is very hard to get real work
the DNS working groups as a result. ISC/BIND promoters have the
group tied up with gratuitous alterations to widely implemented
(eg AXFR-clarify) and irrational and misleading changes (eg IN-ADDR
required) that have been demonstrated to either be security risks or
dangerously misleading security placebo's, and have tried to suppress
dissent on these issues by refusing to accept email, and in the past,
silently discarding email, and otherwise harrassing people who offer
reasoned and detailed objections.
I and others would probably be more involved in issues like DNSSEC,
doubt more progress would be made, if it weren't for the distractions
the mismanagement of the IETF and its working groups.
I've got no idea what this has to do with the number of root-servers.
- - kurtis -
-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0.3
-----END PGP SIGNATURE-----
Ietf mailing list