IETF Logo Mail Archive

Re: [Add] [EXTERNAL] Re: New Version Notification for draft-reddy-add-enterprise-split-dns-01.txt

Paul Wouters <paul@nohats.ca> Thu, 01 April 2021 22:37 UTC

Return-Path: <paul@nohats.ca>
X-Original-To: add@ietfa.amsl.com
Delivered-To: add@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 31A523A2625 for <add@ietfa.amsl.com>; Thu, 1 Apr 2021 15:37:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.094
X-Spam-Level:
X-Spam-Status: No, score=-2.094 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nohats.ca
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SRhVv0z23l33 for <add@ietfa.amsl.com>; Thu, 1 Apr 2021 15:37:51 -0700 (PDT)
Received: from mx.nohats.ca (mx.nohats.ca [193.110.157.68]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 615943A261C for <add@ietf.org>; Thu, 1 Apr 2021 15:37:51 -0700 (PDT)
Received: from localhost (localhost [IPv6:::1]) by mx.nohats.ca (Postfix) with ESMTP id 4FBJ3c4TJYzFFL; Fri, 2 Apr 2021 00:37:48 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nohats.ca; s=default; t=1617316668; bh=mvWNqvl1eJIRQ2LLVNHD6kZhbE8qzpHcN24VpaNF9Yk=; h=From:Subject:Date:References:Cc:In-Reply-To:To; b=ORlW3hBv7flkOZLaPygzkhlwmKFSdyoDbxbEU2p60/Jf6t8aRj4awZmPVDP1be5Rx xjysAP2yi7BidN5KJcaUn0sQQYookoasrX6B4VDJyBBdMh9He8OpmA7BSsSUNnrp8x 0mRDgLU9pRgpQtYVBytDrHRi0gwrUffT0/SRNoOM=
X-Virus-Scanned: amavisd-new at mx.nohats.ca
Received: from mx.nohats.ca ([IPv6:::1]) by localhost (mx.nohats.ca [IPv6:::1]) (amavisd-new, port 10024) with ESMTP id D4LBIwZEiBiz; Fri, 2 Apr 2021 00:37:47 +0200 (CEST)
Received: from bofh.nohats.ca (bofh.nohats.ca [193.110.157.194]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx.nohats.ca (Postfix) with ESMTPS; Fri, 2 Apr 2021 00:37:47 +0200 (CEST)
Received: from [192.168.0.18] (23-233-74-210.cpe.pppoe.ca [23.233.74.210]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits)) (No client certificate requested) by bofh.nohats.ca (Postfix) with ESMTPSA id AAC1660298E5; Thu, 1 Apr 2021 18:37:45 -0400 (EDT)
Content-Type: multipart/alternative; boundary="Apple-Mail-C131B676-1B07-4682-BF56-0B12639F07D7"
Content-Transfer-Encoding: 7bit
From: Paul Wouters <paul@nohats.ca>
Mime-Version: 1.0 (1.0)
Date: Thu, 01 Apr 2021 18:37:41 -0400
Message-Id: <C918FD04-34B0-401F-AD66-1DD42C225862@nohats.ca>
References: <CAHbrMsCvGfRdx20mqm_VEy30_A6RT=sNoet4o+DBKQaB7bAQww@mail.gmail.com>
Cc: "Deen, Glenn (NBCUniversal)" <Glenn.Deen@nbcuni.com>, Vittorio Bertola <vittorio.bertola@open-xchange.com>, ADD Mailing list <add@ietf.org>
In-Reply-To: <CAHbrMsCvGfRdx20mqm_VEy30_A6RT=sNoet4o+DBKQaB7bAQww@mail.gmail.com>
To: Ben Schwartz <bemasc=40google.com@dmarc.ietf.org>
X-Mailer: iPhone Mail (18D70)
Archived-At: <https://mailarchive.ietf.org/arch/msg/add/5KFdrfRmDJs5-VT6YnuLEAX2t9s>
Subject: Re: [Add] [EXTERNAL] Re: New Version Notification for draft-reddy-add-enterprise-split-dns-01.txt
X-BeenThere: add@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Applications Doing DNS <add.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/add>, <mailto:add-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/add/>
List-Post: <mailto:add@ietf.org>
List-Help: <mailto:add-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/add>, <mailto:add-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 01 Apr 2021 22:37:57 -0000

On Apr 1, 2021, at 17:46, Ben Schwartz <bemasc=40google.com@dmarc.ietf.org> wrote:
> 
> However, on this particular point, I think it's unrealistic to expect that most users have a meaningful choice of which network to use.  Users largely have no choice but to submit to whatever restrictions the network demands, so we should be very careful about what kinds of demands we endorse.

Indeed.

And this is why the signal/threat does not add much value and falls in the “may contain peanuts” category - it’s a get out of jail free card at the enduser’s expense and normalizes network interference at the endusers’s expense.

In the case of an attacker (or even unknown network like a coffeeshop) it can also not be trusted from a privacy point of view. So at what point should the IETF recommend to ignore this new signal for their own safety versus complying with the network operator’s demands/friendly notification.

Paul

v2.23.0 | Report a Bug | By Email