Re: [Pdns-users] DNS poisoning and spoof-nearmiss-max

2008-07-31 Thread J Knight
On 7/29/2008 at 5:20 PM, "bert hubert" <[EMAIL PROTECTED]> wrote: > Hi J, > Please find my answers below. > On Tue, Jul 29, 2008 at 05:00:34PM -0400, J Knight wrote: >> Shouldn't the default for this parameter be "1" instead of "20"? > Sometimes you get back really old answers, which would inv

Re: [Pdns-users] DNS poisoning and spoof-nearmiss-max

2008-07-29 Thread bert hubert
Hi J, Please find my answers below. On Tue, Jul 29, 2008 at 05:00:34PM -0400, J Knight wrote: > What is the Recursor's exact detection method and reaction > in relation to the spoof-nearmiss-max config parameter? > > Do internal counters for an outstanding query record > - answers coming back fr

[Pdns-users] DNS poisoning and spoof-nearmiss-max

2008-07-29 Thread J Knight
What is the Recursor's exact detection method and reaction in relation to the spoof-nearmiss-max config parameter? Do internal counters for an outstanding query record - answers coming back from other authoritative (or ANY) servers than the one asked? - any mismatch (not just an "approximate" mi