TCP fallback on timeout

David Conrad drc at
Fri Apr 28 19:08:51 UTC 2017

On Apr 27, 2017, 4:28 PM -0700, Paul Vixie via Unbound-users <unbound-users at>, wrote:

> so in effect, TCP is not required, and will never be required. the
> installed base and its long tail matter more than the wording of 1035., proposed standard updates 1035 and 1123:

"   This document therefore updates the core DNS protocol specifications
     such that support for TCP is henceforth a REQUIRED part of a full DNS
     protocol implementation."

Yes, I know about the "installed base" argument and usually agree with it. However, Internet standards evolve and, when it makes sense, the Internet follows suit. In this case, I think the benefits of TCP support given DNSSEC, privacy, spoof protection, etc., will be sufficient to move the needle over time.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the Unbound-users mailing list