[Freeipa-devel] [PATCH 0107-0108] Fix DNS wildcard validation
Petr Spacek
pspacek at redhat.com
Thu Aug 21 06:43:48 UTC 2014
On 20.8.2014 17:37, Martin Basti wrote:
> + # dissallowed wildcard (RFC 4592)
> + no_wildcard_rtypes = ['CNAME', 'DNAME', 'DS', 'NS']
NACK
http://tools.ietf.org/html/rfc4592#section-4.3 doesn't forbid CNAME with
wildcard owner name. This subsection is is just a "note" for implementers
about proper wildcard handling.
Sorry :-)
--
Petr^2 Spacek
More information about the Freeipa-devel
mailing list