-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Wayne Schlitt wrote:
Stuart D. Gathman writes:
IMO, a simple limit for total queries was much simpler and easier
to implement than what we have.
I've long been for a total queries limit. After all, it is, among other
things, the number of queries that we want to limit, so that is what
should have actually been limited.
Yes, a limit on the total number of DNS lookups is simpler for the
implementation than the 10/10/10 rule. It is, however, much harder to
count by eye.
True, but so are single atoms, and still they are being used with precision
in modern technology. Writing a lookup counter tool isn't hard. There's
no need for stuff to be counted by eye.
And, while the total number of DNS lookups is simplier, it isn't
really the critical thing, it is the total number of bytes thatis
really important.
Right. Such a limit should also have been specified (as opposed to merely
suggesting it) in order to maintain (mostly) deterministic results. (Yes,
I know, the contents of DNS replies aren't exactly deterministic.)
Always impose limits on that which you actually want to limit.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
iD8DBQFFR4N3wL7PKlBZWjsRAh0qAJ9snGFMDtURZ/bQMrUnVCsBTrhGfQCgmGIE
BcY3/a8mz85h8rgrNgpwT+U=
=qCeA
-----END PGP SIGNATURE-----
-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com