Re: Testing root server down code

["Martin J. Levy" <mahtin () mahtin com>]

Steve,

You said...

> Microsoft DNS has a poor response and can spin out of control with all root
> servers available.. how would you tell the difference ;)

This just in... The RPSEC mailing list has the recommendation to the Government (US that is) on both BGP and DNS.

> ISP BGP & DNS Working Group
> Working Paper developed as part of the NSTAC Process - Not for Further Dissemination

(If your not meant to disseminate it, then why did it end up on the RPSEC mailing list?)

Here is what it says about DNS...

> Recommendations for DNS
>
> 1. Encourage physical diversity (both network and geographic) for top-level domain servers.
>
> 2. Encourage greater software diversity for DNS sever systems.  Currently most DNS servers are based on the BIND 
> Berkeley Internet Name Domain code base.  There is also a Microsoft Windows version of DNS that very few groups 
> currently run.  
> 3. ...

Hence... At least in the US (and I can't say for the rest of the world), the government have been recommended to 
consider Microsoft's version of DNS.

Will the UK Government follow in the US's footsteps?

Martin

----------------------------------------
At 07:04 PM 10/23/2002 +0100, Stephen J. Wilcox wrote:


> On Wed, 23 Oct 2002, Sean Donelan wrote:
>
> > The last time all the root servers were down was June 28 1985.  On June 29
> > 1985 there was a flurry of messages about adding root server down code to
> > the various DNS implementations of the day.  Apparently, some of the
> > software had a poor response to all root servers being unreachable, and
> > spun out of control.
> >
> > Has anyone tested modern DNS code (Microsoft and BIND to name two) for
> > this condition recently?  I haven't, hence my question.
>
> Microsoft DNS has a poor response and can spin out of control with all root
> servers available.. how would you tell the difference ;)
>
> Steve