Re: draft-ietf-dnsext-forgery-resilience-01.txt

[bert hubert <bert.hubert@netherlabs.nl>]

On Mon, Nov 12, 2007 at 05:29:51PM +0000, Paul Vixie wrote:
> > And I'm sure there is "industry consensus" that having an easily predictable
> > query-ID is not a good thing.
> 
> so far, so good.  do we have a winner on the above wording?

From my end, we do. 

In rfc-ese:

  Implementations MUST NOT use Query-IDs that can easily be predicted

or

  Implementations MUST use Query-IDs that are not easily predicted

I'd personally prefer something along the lines of

  Implementations MUST use Query-IDs that are hard to predict


Regards,

Bert


-- 
http://www.PowerDNS.com      Open source, database driven DNS Software 
http://netherlabs.nl              Open and Closed source services

--
to unsubscribe send a message to namedroppers-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/namedroppers/>