[bind10-dev] should b10-auth return CNAME chain?
Michal 'vorner' Vaner
michal.vaner at nic.cz
Sat Jan 22 09:27:19 UTC 2011
Hello
On Fri, Jan 21, 2011 at 09:50:04PM -0800, JINMEI Tatuya / 神明達哉 wrote:
> We are now thinking about taking a different approach: don't return
> any chain after CNAME and always have the resolver follow it
> explicitly. Do it at least the target zone isn't signed, and probably
> keep the same behavior even for signed zones.
In future, it might be worth optimising to put the whole chain there, but for
now I think we should be OK with the CNAME itself, not complicating our code
more before the Y2 release.
But I would rather stay with the not returning the chain forever, unless it
brings us any gain.
Have a nice day
--
Next sleep is scheduled after 1k lines of code
Michal 'vorner' Vaner
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 198 bytes
Desc: not available
URL: <https://lists.isc.org/pipermail/bind10-dev/attachments/20110122/69fe6ae6/attachment.bin>
More information about the bind10-dev
mailing list