[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
comcast ipv6 PTR
Mark Andrews <marka at isc.org> writes:
> Actually you just need to *let* the hosts update their own ptr
> records using UPDATE.
>
> People keep saying the PTR records don't mean anything yet still
> demand really strong authentication for updates of PTR records.
> TCP is more than a strong enough authenticator to support update
> from self.
>
> You can even delegate the reverse zone when doing or just after a PD.
>
> * Accept NS/DNAME updates for the reverse prefix from any address
> in the delegated address range over TCP. This avoids having a
> temporatially lame delegation. named already has code to do this
> for /48's as I coded it to to support 6to4.
This sounded like an excellent idea at first, but then I started
thinking: As a home user, would I really want to give anyone with
access to my network the right to change my reverse delegation?
I don't think so. I am not even sure I would want them all to be able
to update the PTR record for the addresses they use.
Bj?rn