<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=gb2312">
<META content="MSHTML 6.00.2900.6129" name=GENERATOR><LINK
href="BLOCKQUOTE{margin-Top: 0px; margin-Bottom: 0px; margin-Left: 2em}"
rel=stylesheet></HEAD>
<BODY style="FONT-SIZE: 10pt; MARGIN: 10px; FONT-FAMILY: verdana">
<DIV><FONT face=Verdana size=3>In unbound-1.4.6, there is a line
"mesh->num_reply_addrs > mesh->max_reply_states*16" in function
mesh_new_client() in mesh.c. Comments above the line says that "protect our
memory usage from storing reply addresses". In a extreme case, however, some
mesh_state(query) will have a lot of mesh_reply. That is to say, a lot
of same queries with same <qname, qtype, qclass> from different IPs
will flood the resolver. surfeit queries should be ignored, isn't it
?</FONT></DIV>
<DIV><FONT size=3></FONT> </DIV>
<DIV align=left><FONT face=Verdana color=#c0c0c0 size=2>2011-08-19 </FONT></DIV>
<DIV align=left><FONT color=#c0c0c0>Mingxing</FONT></DIV></BODY></HTML>