RFR 8052412: Too many DNS requests for KDC setttings
Xuelei Fan
xuelei.fan at oracle.com
Mon Aug 4 03:27:43 UTC 2014
On 8/4/2014 11:25 AM, Wang Weijun wrote:
>
> On Aug 4, 2014, at 11:14, Xuelei Fan <xuelei.fan at oracle.com> wrote:
>
>> It's not common but the DNS records of KDC may be updated. This update
>> may introduce regression if the DNS record get updated. Is it possible
>> to support cache timeout in order to mitigate the impact?
>
> Are you OK with using the TTL value in the DNS response?
>
Sound like a good value to me.
Xuelei
More information about the security-dev
mailing list