IETF Logo Mail Archive

Re: [Add] [EXT] Re: New Version Notification for draft-reddy-add-enterprise-split-dns-01.txt

Vittorio Bertola <vittorio.bertola@open-xchange.com> Thu, 01 April 2021 20:48 UTC

Return-Path: <vittorio.bertola@open-xchange.com>
X-Original-To: add@ietfa.amsl.com
Delivered-To: add@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E0D603A22E6 for <add@ietfa.amsl.com>; Thu, 1 Apr 2021 13:48:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=open-xchange.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WFG72oywfyyE for <add@ietfa.amsl.com>; Thu, 1 Apr 2021 13:48:16 -0700 (PDT)
Received: from mx3.open-xchange.com (alcatraz.open-xchange.com [87.191.39.187]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5B5EF3A22E3 for <add@ietf.org>; Thu, 1 Apr 2021 13:48:16 -0700 (PDT)
Received: from imap.open-xchange.com (imap.open-xchange.com [10.20.28.82]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx3.open-xchange.com (Postfix) with ESMTPSA id 7296E6A224; Thu, 1 Apr 2021 22:48:13 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=open-xchange.com; s=201705; t=1617310093; bh=ZLuvXYzx84xQD77+/Z5yOh6dzuiraH3RB0k5ZuKNVf0=; h=Date:From:To:Cc:In-Reply-To:References:Subject:From; b=yveeA8z0ph5l0LNfa5ku3MsPiiBjFf6Rlfdp54zIcUsH/PJ3vdjiN0ct1gmP6Vsis YUYvohSh0HaUGL3TPIZijNvzIuYRzPUQ0vvfHTKpvJTykN7veGnG3vF7ajsWj1b5tm 1GmwLBKhl8dgsthDej9sCI5iXSpZM3XDRHYFHbbP/cqi4y/Kz2GStrdoHwgEhwCRgn zlhfKZxxm2rKVJlOWQqL+NGargQLB+AXOYIGVsF6RH12vlS0DQvk3JzYvFFWSgsBUf gqrIEKf6x4htg4RDhwD9qQvc3gVxY5/4N9RjLVLEhp1BAjclLOjT5V6ArO47M6ZVY9 No+eISushq9jA==
Received: from appsuite-gw2.open-xchange.com ([10.20.28.82]) by imap.open-xchange.com with ESMTPSA id mHfYG40xZmDnXQAA3c6Kzw (envelope-from <vittorio.bertola@open-xchange.com>); Thu, 01 Apr 2021 22:48:13 +0200
Date: Thu, 01 Apr 2021 22:48:13 +0200
From: Vittorio Bertola <vittorio.bertola@open-xchange.com>
To: Ben Schwartz <bemasc=40google.com@dmarc.ietf.org>
Cc: ADD Mailing list <add@ietf.org>
Message-ID: <1043743576.24395.1617310093395@appsuite-gw2.open-xchange.com>
In-Reply-To: <CAHbrMsAxaeXjK7yg_VRL0uwQMF8RQH2kiV_Ff8JL103U9OyOHA@mail.gmail.com>
References: <161544385340.18570.13061001177806683345@ietfa.amsl.com> <CAFpG3geAq9oTEJp+uFQ_vHdATgT9Faza-tJURciO=RheLgLDug@mail.gmail.com> <CAHbrMsCK5BUNzF+8nd722R-BR612mM+3oA6x9RzoT_osHWWRzg@mail.gmail.com> <BFF52DBA-5A64-46E5-B51A-9012EF9E09BD@apple.com> <CAFpG3gcUroKr=BD+pqy7-+D48osdM3wmtEjuVP6V+Gra3BqwFA@mail.gmail.com> <CAHbrMsB0zH_0exyZYd2ZaC0NvbLdLCZZqu8o0BcRO=js5K7jeQ@mail.gmail.com> <1094553502.24346.1617306679846@appsuite-gw2.open-xchange.com> <CAHbrMsAxaeXjK7yg_VRL0uwQMF8RQH2kiV_Ff8JL103U9OyOHA@mail.gmail.com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_Part_24393_762485148.1617310093382"
X-Priority: 3
Importance: Normal
X-Mailer: Open-Xchange Mailer v7.10.5-Rev8
X-Originating-Client: open-xchange-appsuite
Autocrypt: addr=vittorio.bertola@open-xchange.com; prefer-encrypt=mutual; keydata= mQENBFhFR+UBCACfoywFKBRfzasiiR9/6dwY36eLePXcdScumDMR8qoXvRS55QYDjp5bs+yMq41qWV9 xp/cqryY9jnvHbeF3TsE5yEazpD1dleRbkpElUBpPwXqkrSP8uXO9KkS9KoX6gdml6M4L+F82WpqYC1 uTzOE6HPmhmQ4cGSgoia2jolxAhRpzoYN99/BwpvoZeTSLP5K6yPlMPYkMev/uZlAkMMhelli9IN6yA yxcC0AeHSnOAcNKUr13yXyMlTyi1cdMJ4sk88zIbefxwg3PAtYjkz3wgvP96cNVwAgSt4+j/ZuVaENP pgVuM512m051j9SlspWDHtzrci5pBKKFsibnTelrABEBAAG0NUJlcnRvbGEsIFZpdHRvcmlvIDx2aXR 0b3Jpby5iZXJ0b2xhQG9wZW4teGNoYW5nZS5jb20+iQFABBMBAgAqBAsJCAcGFQoJCAsCBRYCAwEAAp 4BAhsDBYkSzAMABQMAAAAABYJYRUflAAoJEIU2cHmzj8qNaG0H/ROY+suCP86hoN+9RIV66Ej8b3sb8 UgwFJOJMupZfeb9yTIJwE4VQT5lTt146CcJJ5jvxD6FZn1Htw9y4/45pPAF7xLE066jg3OqRvzeWRZ3 IDUfJJIiM5YGk1xWxDqppSwhnKcMOuI72iioWxX0nGQrWxpnWJsjt08IEEwuYucDkul1PHsrLJbTd58 fiMKLVwag+IE1SPHOwkPF6arZQZIfB5ThtOZV+36Jn8Hok9XfeXWBVyPkiWCQYVX39QsIbr0JNR9kQy 4g2ZFexOcTe8Jo12jPRL7V8OqStdDes3cje9lWFLnX05nrfLuE0l0JKWEg8akN+McFXc+oV68h7nu5A Q0EWEVH5QEIAIDKanNBe1uRfk8AjLirflZO291VNkOAeUu+dIhecGnZeQW6htlDinlYOnXhtsY1mK9W PUu+xshDq7lXn2G0LxldYwyJYZaJtDgIKqVqwxfA34Lj27oqPuXwcvGhdCgt0SW/YcalRdAi0/AzUCu 5GSaj2kaGUSnBYYUP4szGJXjaK2psP5toQSCtx2pfSXQ6MaqPK9Zzy+D5xc6VWQRp/iRImodAcPf8fg JJvRyJ8Jla3lKWyvBBzJDg6MOf6Fts78bJSt23X0uPp93g7GgbYkuRMnFI4RGoTVkxjD/HBEJ0CNg22 hoHJondhmKnZVrHEluFuSnW0wBEIYomcPSPB+cAEQEAAYkBMQQYAQIAGwUCWEVH5QIbDAQLCQgHBhUK CQgLAgUJEswDAAAKCRCFNnB5s4/KjdO8B/wNpvWtOpLdotR/Xh4fu08Fd63nnNfbIGIETWsVi0Sbr8i E5duuGaaWIcMmUvgKe/BM0Fpj9X01Zjm90uoPrlVVuQWrf+vFlbalUYVZr51gl5UyUFHk+iAZCAA0WB rsmACKvuV1P7GuiX3UV9b59T9taYJxN3dNFuftrEuvsqHimFtlekUjUwoCekTJdncFusBhwz2OrKhHr WWrEsXkfh0+pURWYAlKlTxvXuI7gAfHEQM+6OnrWvXYtlhd0M1sBPnCjbyG63Qws7Rek9bEWKtH6dA6 dmT2FQT+g1S9Mdf0WkPTQNX0x24dm8IoHuD3KYwX7Svx43Xa17aZnXqUjtj1
Archived-At: <https://mailarchive.ietf.org/arch/msg/add/iKLUnrt2RKKPqj07ulH8exO-8To>
Subject: Re: [Add] [EXT] Re: New Version Notification for draft-reddy-add-enterprise-split-dns-01.txt
X-BeenThere: add@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Applications Doing DNS <add.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/add>, <mailto:add-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/add/>
List-Post: <mailto:add@ietf.org>
List-Help: <mailto:add-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/add>, <mailto:add-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 01 Apr 2021 20:48:22 -0000

>     Il 01/04/2021 22:31 Ben Schwartz <bemasc=40google.com@dmarc.ietf.org> ha scritto:
> 
>     On Thu, Apr 1, 2021 at 3:51 PM Vittorio Bertola <vittorio.bertola=40open-xchange.com@dmarc.ietf.org mailto:40open-xchange.com@dmarc.ietf.org > wrote:
> 
>         > > 
> >             > > >             Il 01/04/2021 19:44 Ben Schwartz <bemasc=40google.com@dmarc.ietf.org mailto:40google.com@dmarc.ietf.org > ha scritto:
> > > 
> > >             Defining a flag of this kind would amount to the IETF endorsing the practice of network operators demanding access to all of their users' DNS activity, i.e. browsing history.  That's out of scope for our working group.  It also violates RFC 8890, "The Internet is for End Users".
> > > 
> > >         > >         Why should this be against RFC 8890? In several countries, there are millions of users that actively opt into DNS-based parental controls and network security services that require them to share all their DNS activity with the operators providing them (either their ISP or a specialized company).
> > 
> >     > 
>     This flag is not relevant to the case of "user opt-in".  It is quite specifically a signal that the network prohibits the user from opting out.
> 
No, it is a signal that the network prohibits *the client* from opting out (or, more correctly, politely asks the client not to do so, since it cannot be forced). There is no certainty that the user was involved by the client in that opt-out decision, and the network could actually be producing that signal on behalf of the user, if the user has opted into the network operator's DNS-based monitoring and security services. Or, as another example, there are cases in which public authorities representing the collectivity of the users ask or require the national network operators to perform DNS-based filtering to protect the users from various threats - this is also "for the end users". Clients that really care about their users should want to receive that signal so that they can act accordingly.

-- 

Vittorio Bertola | Head of Policy & Innovation, Open-Xchange
vittorio.bertola@open-xchange.com mailto:vittorio.bertola@open-xchange.com 
Office @ Via Treviso 12, 10144 Torino, Italy

v2.23.0 | Report a Bug | By Email