Re: [Asrg] Re: 3. Problems with domain keys and with message-body-authenticator

[Everton da Silva Marques <evertonsm at yahoo.com.br>]

--- der Mouse <mouse at Rodents.Montreal.QC.CA> wrote:
> >>> TTL won't have to be kept low, as the RRs aren't updated once
> >>> published,
> >> That is not correct, the zone itself needs to be updated with
> >> every message that passed through.  This requires very very low TTL
> > Why?  The TTL of existing records has nothing to do with the rate at
> > which new records can be added.
> 
> Strictly, this is true.  The MINTTL in the SOA needs to be low, to
> limit the lifetime of negative cache entries, but there is no reason
> why records have to use that TTL - it's just a handy shorthand.

As far as MBA is concerned, and assuming DNS as database service,
TTLs can have any reasonable value, as the hashings published as
RRs won't ever be changed, except for removal.

> Also, it occurs to me that if you send a lot of mail, your SOA serial
> number will wrap fairly soon.

4,294,967,296 / 100 udates/s = 42,949,672 seconds

42,949,672 / 86400s (1 day) = 497 days

-- 
Everton


______________________________________________________________________

Yahoo! Messenger - Fale com seus amigos online. Instale agora! 
http://br.download.yahoo.com/messenger/

_______________________________________________
Asrg mailing list
Asrg at ietf.org
https://www1.ietf.org/mailman/listinfo/asrg