IETF Logo Mail Archive

Re: [Add] [Ext] Draft Posting: CNAME Discovery of Local DoH Resolvers

tirumal reddy <kondtir@gmail.com> Wed, 01 July 2020 11:11 UTC

Return-Path: <kondtir@gmail.com>
X-Original-To: add@ietfa.amsl.com
Delivered-To: add@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 669A23A0E3D for <add@ietfa.amsl.com>; Wed, 1 Jul 2020 04:11:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id okvN9GMjnjQx for <add@ietfa.amsl.com>; Wed, 1 Jul 2020 04:11:14 -0700 (PDT)
Received: from mail-il1-x129.google.com (mail-il1-x129.google.com [IPv6:2607:f8b0:4864:20::129]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 075653A0E3B for <add@ietf.org>; Wed, 1 Jul 2020 04:11:14 -0700 (PDT)
Received: by mail-il1-x129.google.com with SMTP id i18so20678778ilk.10 for <add@ietf.org>; Wed, 01 Jul 2020 04:11:13 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=EnSIATaKBRuHsQvfh4BBBhPFfL/ac6gnLfX9fAZ+7n4=; b=T0y0Sd/JLQXATaDJ1prgCxexntgXHFOuX+oOKtqJ7kt4KhbzGNoEwBeDFUhqxKnibC ZCVKg7ZAnQmTxrbKsmBndxmzLn1TwRK9fWlhJA9OvilZwmSnMst6CyPmDHa+GoowjqOh IYzjJbT7hRDI+2Z8pvIwXmt2p+PcPY+GzL5EHltBL1uR319kIAgd7FErN7NzvnkCfHB6 L4Xkdrm6o2bwL0LEunKsXdu4RmxYOtHYDzi3vI7JuDp8HBlrIDKtRt+oGJlqD1yqX65M VhuJOrq5EWCbE76KQGHgp2J6OCnjX5LElYtFhLLqgFk1BGJBEEwNqQ3QrOsF0CNNK6x6 maow==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=EnSIATaKBRuHsQvfh4BBBhPFfL/ac6gnLfX9fAZ+7n4=; b=FydHsvQnfw94zuQth7oxOCJmyV129nK1GwG9xyE6Owjh6/cMNgCT2G6E1dGsqBziRO nayNf2i24DNkcO25VvydAN9LjI2BtR1JC2NXVqRyRX4tFdrJN8QbHBsMNh4K5FJrjqI+ rXijq4CKyPCkevzsmawWIXkqDgq4iokDPLs6MfgVWuA8UxT/krWg0T07naij1C1fzzE8 1vUjj7iERRZAk2fis8S2gc05xCoYatZ3jUtYs2gL4lBR5oq+TX9IM8094DeYRvkzySb9 8KP0z4X6rHWzHy1EXs8VMj7TwecOfPr2TJW3kBPfuu1Uc9JjbwPTiCNkktRw2tn1PaoF bJjA==
X-Gm-Message-State: AOAM530jJZa4Xx67HWg6lqAw5WDLuFySRLOQWpVuYzWSzWGZugq7IHrd hByHuj0JaA6gWsel5U8XA81Gv6S3qih8cbXkWTC3IL/0wq4=
X-Google-Smtp-Source: ABdhPJzBefbR++EeVcPJgnO0wJpTaXCXwXrEC/6aUNXuAzPj8CBG+K/OtlQVW6eqqp8KmFcYi0hiYRLPa0d1fD2P+hs=
X-Received: by 2002:a05:6e02:1313:: with SMTP id g19mr6813612ilr.123.1593601873097; Wed, 01 Jul 2020 04:11:13 -0700 (PDT)
MIME-Version: 1.0
References: <CABcZeBPTkWeB40wpTowKvEJ-gXA3AL2e-BE+C_FC7Js7-D0DZQ@mail.gmail.com> <2560148.jvFFTcX3xC@linux-9daj> <D7D47783-F18A-431A-964F-E366D071D023@fugue.com> <4703088.fjZbX7tNNj@linux-9daj>
In-Reply-To: <4703088.fjZbX7tNNj@linux-9daj>
From: tirumal reddy <kondtir@gmail.com>
Date: Wed, 01 Jul 2020 16:41:01 +0530
Message-ID: <CAFpG3gdiidmjxoauBw56ZybRabB6JET1Nh5dzTLQq1k0ZAn6Uw@mail.gmail.com>
To: Paul Vixie <paul@redbarn.org>
Cc: Ted Lemon <mellon@fugue.com>, ADD Mailing list <add@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000008f39bc05a95f5987"
Archived-At: <https://mailarchive.ietf.org/arch/msg/add/2DbRKCj8s53mqgP9KWudEkUxBmA>
Subject: Re: [Add] [Ext] Draft Posting: CNAME Discovery of Local DoH Resolvers
X-BeenThere: add@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Applications Doing DNS <add.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/add>, <mailto:add-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/add/>
List-Post: <mailto:add@ietf.org>
List-Help: <mailto:add-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/add>, <mailto:add-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 01 Jul 2020 11:11:15 -0000

On Wed, 1 Jul 2020 at 13:29, Paul Vixie <paul@redbarn.org> wrote:

> On Wednesday, 1 July 2020 05:59:51 UTC Ted Lemon wrote:
> > On Jul 1, 2020, at 1:34 AM, Paul Vixie <paul@redbarn.org> wrote:
> > > as i wrote, there are other network configuration parameters which are
> > > also valuable targets, such as outbound proxy settings.
> >
> > Who configures those with DHCP? That would be insane.
>
> my IoT devices hate me, because i won't let them speak directly to their
> motherships, and lacking keyboards or ssh listeners, i have no way to tell
> them what proxy they would have to use to be successful. if you want me to
> agree that IoT is insane, i probably will. but it's our world.
>

Secure bootstrapping methods for IoT devices are discussed both inside
(e.g., BRSKI) and outside of IETF (DPP, OCF, OMA).


>
> > It sounds like a validating stub resolver will fail to work with your
> > product.
>
> well, yes and no. i want certain resolutions to fail. these fail. exactly
> how
> that failure is obtained matters less to me than the failure itself.
>
> > > i think i should have paid more attention at that time, and i
> apologize.
> > > DHCP was always the wrong thing to build, like BOOTP before it, and
> IPv6
> > > address assignment after it. secure hosting networks have to use /30
> and
> > > later /31 netmasks (one customer per vlan) in order to trust any of
> this.
> >
> > I don’t know what a “secure hosting network” is. Is that an IETF thing?
>
> definitely not an IETF thing. rather, it's the real world.
>
> --
> Paul
>
>
> --
> Add mailing list
> Add@ietf.org
> https://www.ietf.org/mailman/listinfo/add
>

v2.23.0 | Report a Bug | By Email