root hints operation

Dave Warren davew at
Tue Nov 17 22:02:11 UTC 2015

On 2015-11-16 18:09, Grant Taylor wrote:
> It's my understanding that ALL of the root servers would have to 
> change all of their addresses at the same time for DNS to be impacted. 

Or, the IP formerly used as a root server could turn malicious and start 
offering an alternate response. This would only impact resolvers that 
had outdated root hints, and also happened to try that particular IP 
first, but it's at least a theoretical risk.

Dave Warren

More information about the bind-users mailing list