(3) p 3, sec 3.2. Recommendations for UDP requestors
R7. UDP requestors MAY drop fragmented DNS/UDP responses without IP
reassembly to avoid cache poisoning attacks.
As written, I don't think that this is really a recommendation. Either it is a
just a statement or fact (in which case it is not a recommendation), or it
should be upgraded to a SHOULD.
paulwouters
commented
9 months ago
(3) p 3, sec 3.2. Recommendations for UDP requestors
R7. UDP requestors MAY drop fragmented DNS/UDP responses without IP reassembly to avoid cache poisoning attacks.
As written, I don't think that this is really a recommendation. Either it is a just a statement or fact (in which case it is not a recommendation), or it should be upgraded to a SHOULD.