[Bug 1357] SOCKS proxy attempts fail to some servers due to DNS timeouts
bugzilla-daemon at bugzilla.mindrot.org
bugzilla-daemon at bugzilla.mindrot.org
Tue Sep 4 12:03:58 EST 2007
http://bugzilla.mindrot.org/show_bug.cgi?id=1357
Darren Tucker <dtucker at zip.com.au> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |dtucker at zip.com.au
--- Comment #3 from Darren Tucker <dtucker at zip.com.au> 2007-09-04 12:03:55 ---
(In reply to comment #2)
> Yes, that fixed it. *sigh*
>
> Would you not agree that "AddressFamily=any" is still broken in the
> common case (where IPv6 is not used)? It should not hang like it does.
I think the brokenness is in the DNS infrastructure in question.
Quoth RFC4074 (ftp://ftp.rfc-editor.org/in-notes/rfc4074.txt):
"4. Problematic Behaviors
There are some known cases at authoritative servers that do not
conform to the expected behavior. This section describes those
problematic cases.
4.1. Ignore Queries for AAAA
Some authoritative servers seem to ignore queries for an AAAA RR,
causing a delay at the stub resolver to fall back to a query for an
A
RR. This behavior may cause a fatal timeout at the resolver or at
the application that calls the resolver. Even if the resolver
eventually falls back, the result can be an unacceptable delay for
the application user, especially with interactive applications like
web browsing."
--
Configure bugmail: http://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
More information about the openssh-bugs
mailing list