On Mon, Mar 24, 2008 at 10:36:33AM -0700, Yue Luo wrote:

> The draft discusses about the effect of TTL on the vulnerability. This


You are right that the TTL features in the calculations - in degenerate
cases the TTL revolves into the network rtt, as the draft notes.

To not overly broaden the document, I'm trying to stay within the bounds of
recommendations outside of the actual payload of DNS packets, and focus on
port numbers, id choices etc.


http://www.PowerDNS.com Open source, database driven DNS Software
http://netherlabs.nl Open and Closed source services

to unsubscribe send a message to namedroppers-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.