[discussion] Answers must copy exact letter case from QuErY (0x20) #83
Labels
next
Idea for the next DNS flag day - please discuss!
Comments
|
While I'd like to see 0x20, I question whether it really has much value. While it is one more source of anti-spoofing entropy we could use, we already don't really have much of a problem with spoofing as it is, and spoofing is better defended against with DNSSEC anyway. Maybe roll it into "let's have a flag day for multiple issues at once", but I wouldn't bother pursuing it standalone. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Specification: https://tools.ietf.org/html/draft-vixie-dnsext-dns0x20-00
Expected advantage: Little bit safer DNS queries, entropy added to queries makes it harder for attackers to spoof DNS answers.
Expected disadvantage: None
Expected implementation complexity for software developers: Negligible
Expected non-compliance: Small, major open-source DNS implementations already preserve query letter case correctly.
Research to confirm assumptions: TBD
The text was updated successfully, but these errors were encountered: