Skip to content

Commit

Permalink
Add files via upload
Browse files Browse the repository at this point in the history
  • Loading branch information
@tireddy2
tireddy2 authored Feb 21, 2024
1 parent 3fc96e1 commit 9e2f5c4
Showing 1 changed file with 5 additions and 3 deletions.
8 changes: 5 additions & 3 deletions draft-ietf-add-resolver-info.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -117,9 +117,11 @@ Reputation:
using the RESINFO RR type and QNAME of "resolver.arpa". In this case, a client has to contend
with the risk that a resolver does not support RESINFO. The resolver might
pass the query upstream, and then the client can receive a positive RESINFO response either
from a legitimate upstream DNS resolver or an attacker. If a client sees the RESINFO in the
Answer section, it can detect that the response is not provided by the resolver
and discards the response.
from a legitimate upstream DNS resolver or an attacker. The client in the DNS query MUST
set the Recursion Desired (RD) bit set to 0 to ensure the response is provided by the resolver.
If the resolver does not support RESINFO, it will return an authoritative name error.
In addition, if a client sees the RESINFO in the Answer section, it can detect that
the response is not provided by the resolver and discards the response.

# Format of the Resolver Information {#format}

Expand Down

0 comments on commit 9e2f5c4

Please sign in to comment.