Re: [Add] Mozilla's DoH resolver policy
"Livingood, Jason" <Jason_Livingood@comcast.com> Tue, 16 April 2019 15:57 UTC
Return-Path: <Jason_Livingood@comcast.com>
X-Original-To: add@ietfa.amsl.com
Delivered-To: add@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3FD9F1207A9 for <add@ietfa.amsl.com>; Tue, 16 Apr 2019 08:57:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (4096-bit key) header.d=comcast.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GR10o6h8LftD for <add@ietfa.amsl.com>; Tue, 16 Apr 2019 08:57:34 -0700 (PDT)
Received: from copdcmhout02.cable.comcast.com (copdcmhout02.cable.comcast.com [96.114.158.212]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 28DC4120C76 for <add@ietf.org>; Tue, 16 Apr 2019 07:58:55 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; d=comcast.com; s=20190220p; c=relaxed/simple; q=dns/txt; i=@comcast.com; t=1555426733; x=2419340333; h=From:Sender:Reply-To:Subject:Date:Message-ID:To:Cc:MIME-Version:Content-Type: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=zkHxgUMsZZ5SQgdf+3hYjDvK/H15jfxSRZxXHljg5rw=; b=wqpiOq7S7eU36rlKO3f+1jJDsgeQDPesHM2ygg/riBCUWq4MtRfyhDCtepiomcgC Zt2ii3WaS7E4+NKfKiFE18HpfFSYUYNkzi+NOFIW+J+4WUKIzRHXzHKLPTZZ0cHs Rm/ORMDcKtW6OGElOGRFQv4xuIyL98f/WUnKGbASkY+kS6xtngYBgxu+PODLp5Wp ECo5BcIvUXoBeXduXejrfQEGRMX8EJAVYGG8VkY7K0C+1nIriRenDGRrll+8o7Zx xZVQWGCl2Vndkc9Tk9CeAolG3JlfT0HPFXGIBkKmbYarLUx/GJTANhvrw9YN5ieB vgCpDM9B+VbWzTXV+bRJ20hSR7RZ/Z809H0pqfR2Nl9yivQRVdjVRqooD+Scn0AJ KueF2Xd5NL3YQcIBCZ/960I6NbKVl+HevDVSRyxC6eSl9HCEevlntsYC3jzStkD1 eswTWdrCpdhqvi6iJc/3QzMpuf4C9FsqxlKHYjhdlM3+bjnzorGXs3beFh2fFoc1 LA6XjcYG3jGVUwCMwDXZgKIuoRWXA9jFMP7l15EWgfwlDeKyPTNHTglNIrvuM2Zo Xz5e0eraNvLnG67pSpYhiGu68tyh123WOL4F7VlFyCjgidHrX6ANjuOcfIf7ew9F b7nAlYTkb3/8mZMMHbzSZSnJ/D9xD6YsY3vC7KQ90RA=;
X-AuditID: 60729ed4-f1dff7000000add3-80-5cb5edac487f
Received: from COPDCEXC40.cable.comcast.com (copdcmhoutvip.cable.comcast.com [96.114.156.147]) (using TLS with cipher AES256-SHA256 (256/256 bits)) (Client did not present a certificate) by copdcmhout02.cable.comcast.com (SMTP Gateway) with SMTP id 2A.82.44499.DADE5BC5; Tue, 16 Apr 2019 08:58:53 -0600 (MDT)
Received: from COPDCEXC37.cable.comcast.com (147.191.125.136) by COPDCEXC40.cable.comcast.com (147.191.125.139) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1713.5; Tue, 16 Apr 2019 10:58:52 -0400
Received: from COPDCEXC37.cable.comcast.com ([fe80::3aea:a7ff:fe36:8a94]) by COPDCEXC37.cable.comcast.com ([fe80::3aea:a7ff:fe36:8a94%15]) with mapi id 15.01.1713.004; Tue, 16 Apr 2019 10:58:52 -0400
From: "Livingood, Jason" <Jason_Livingood@comcast.com>
To: Peter Saint-Andre <stpeter@mozilla.com>, "add@ietf.org" <add@ietf.org>
Thread-Topic: [Add] Mozilla's DoH resolver policy
Thread-Index: AQHU77Dlc8CwVfKDqk2z5i9MnPeCkqY15qUAgAACYACAAKNWAIAAYRaAgAAChQCAAHO2gIABT09RgABW7gCABeCDgA==
Date: Tue, 16 Apr 2019 14:58:52 +0000
Message-ID: <21C5261E-9DE0-4CFD-A949-6E91DD0C2552@cable.comcast.com>
References: <297C80CE-F017-4F4A-80E2-79941E8B9E02@icann.org> <b64761dc-dfab-e4e1-4bfb-82d607efa590@riseup.net> <alpine.LRH.2.21.1904101324530.9940@bofh.nohats.ca> <64aeff58-6d68-4c4f-b991-2b2f62d193a0@www.fastmail.com> <90A5C5C4-373C-4B39-80C2-C115CD23CB4D@fl1ger.de> <994839978.18707.1554973716877@appsuite.open-xchange.com> <af5f5c76-0095-65a0-39d1-d29d4bb0e906@mozilla.com> <ybl36mn8b54.fsf@w7.hardakers.net> <f9d0cd98-db0c-7f42-d351-d9a5002c4765@mozilla.com>
In-Reply-To: <f9d0cd98-db0c-7f42-d351-d9a5002c4765@mozilla.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.17.1.190326
x-originating-ip: [96.114.156.9]
Content-Type: text/plain; charset="utf-8"
Content-ID: <A8EC6C1963F08E42868463A2B4110E3D@comcast.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-CFilter-Loop: Forward
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFprLKsWRmVeSWpSXmKPExsWSUDRnsu7at1tjDP58Z7H4f3odm8WzlacY HZg8liz5yeTRd6CLNYApqoHRpiSjKDWxxCU1LTWvONWOSwED2CSlpuUXpbomFuVUBqXmpCZi VwZSmZKak1mWWqSP1Rh9rOYkdDFlnLxxh6ngF3PFiymn2BsY3zB3MXJySAiYSCw6eoipi5GL Q0hgF5PEsc5rzBBOC5DzYwNU5jSjRM+tpewgLWwCZhJ3F14BaxcR8JJ4/+8ZWFxYwEBizbtz LBBxQ4mXr5uharIkWn5dBIpzcLAIqEpc26cPEuYVcJE48fQG1LJ7zBL9f1+zgSQ4Bewl5kxa BTaHUUBM4vupNUwgNrOAuMStJ/OZIM4WkFiy5zzUC6ISLx//YwWxRQX0JR5svcIIEVcAuu0U G8heZgFNifW79CHGWEkc7DnJCGErSkzpfsgOcY+gxMmZT1ggWsUlDh/ZwTqBUWIWks2zECbN QjJpFpJJs5BMWsDIuoqRz9JMz9DQRM/Q1ELPyNBoEyM40cy7soPx8nSPQ4wCHIxKPLz+N7fG CLEmlhVX5h5ilOBgVhLhdUzZEiPEm5JYWZValB9fVJqTWnyIUZqDRUmcN/ERULVAemJJanZq akFqEUyWiYNTqoGxniXtvrljt9a2w1b3cg9pvnysUHL6tumjc7JCQZ/kvlyb+Tfe4Kzwc/P2 21PlUuKNmleteXaFT3jxrNzSNvasY96S6+f1S7QmcD4zfr2hfPe8zcxNGk/WnbyyQSXq/Abe 6JlG6SKRvkHLXu7JelBQ7NV2ToS99J+3se9Vqx1ZWo7cPoud911QYinOSDTUYi4qTgQAXyIK VDADAAA=
Archived-At: <https://mailarchive.ietf.org/arch/msg/add/w8fBh8mMmR5x6siLyxtQYIETVIA>
Subject: Re: [Add] Mozilla's DoH resolver policy
X-BeenThere: add@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Applications Doing DNS <add.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/add>, <mailto:add-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/add/>
List-Post: <mailto:add@ietf.org>
List-Help: <mailto:add-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/add>, <mailto:add-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 16 Apr 2019 15:57:42 -0000
Chiming in late on the technical aspects of the policy - and discussion of whether or not to include DNSSEC in the TRR requirements. IMO, Mozilla can lead the way and help spur adoption. Said another way, this is Mozilla's 'sharks with laser beams' moment on DNS security & privacy. ;-) So I'd say require DNSSEC validation as well as native IPv6 support. Jason
- [Add] Mozilla's DoH resolver policy Paul Hoffman
- Re: [Add] Mozilla's DoH resolver policy nusenu
- Re: [Add] Mozilla's DoH resolver policy Paul Wouters
- Re: [Add] Mozilla's DoH resolver policy Martin Thomson
- Re: [Add] Mozilla's DoH resolver policy Ralf Weber
- Re: [Add] Mozilla's DoH resolver policy Valentin Gosu
- Re: [Add] Mozilla's DoH resolver policy Vittorio Bertola
- Re: [Add] Mozilla's DoH resolver policy Jim Reid
- Re: [Add] Mozilla's DoH resolver policy Ralf Weber
- Re: [Add] Mozilla's DoH resolver policy Manabu Sonoda
- Re: [Add] Mozilla's DoH resolver policy Valentin Gosu
- Re: [Add] Mozilla's DoH resolver policy Ray Bellis
- Re: [Add] Mozilla's DoH resolver policy Ralf Weber
- Re: [Add] Mozilla's DoH resolver policy Daniel Stenberg
- Re: [Add] Mozilla's DoH resolver policy Paul Wouters
- Re: [Add] Mozilla's DoH resolver policy Vladimír Čunát
- Re: [Add] Mozilla's DoH resolver policy Ralf Weber
- Re: [Add] Mozilla's DoH resolver policy Vladimír Čunát
- Re: [Add] Mozilla's DoH resolver policy Adam Roach
- Re: [Add] Mozilla's DoH resolver policy Peter Saint-Andre
- Re: [Add] Mozilla's DoH resolver policy Peter Saint-Andre
- Re: [Add] Mozilla's DoH resolver policy nusenu
- Re: [Add] [Ext] Mozilla's DoH resolver policy Paul Hoffman
- Re: [Add] [Ext] Mozilla's DoH resolver policy Peter Saint-Andre
- Re: [Add] [Ext] Mozilla's DoH resolver policy Adam Roach
- Re: [Add] [Ext] Mozilla's DoH resolver policy Brian Dickson
- Re: [Add] [Ext] Mozilla's DoH resolver policy Adam Roach
- Re: [Add] Mozilla's DoH resolver policy Vittorio Bertola
- Re: [Add] Mozilla's DoH resolver policy Wes Hardaker
- Re: [Add] Mozilla's DoH resolver policy Peter Saint-Andre
- Re: [Add] Mozilla's DoH resolver policy Ted Hardie
- Re: [Add] Mozilla's DoH resolver policy Wes Hardaker
- Re: [Add] Mozilla's DoH resolver policy Ted Hardie
- Re: [Add] Mozilla's DoH resolver policy Wes Hardaker
- Re: [Add] Mozilla's DoH resolver policy Christian Huitema
- Re: [Add] Mozilla's DoH resolver policy Mark Andrews
- Re: [Add] Mozilla's DoH resolver policy Wes Hardaker
- Re: [Add] Mozilla's DoH resolver policy Vittorio Bertola
- Re: [Add] Mozilla's DoH resolver policy Vittorio Bertola
- Re: [Add] Mozilla's DoH resolver policy Livingood, Jason
- Re: [Add] Mozilla's DoH resolver policy Livingood, Jason
- Re: [Add] Mozilla's DoH resolver policy Salz, Rich
- Re: [Add] Mozilla's DoH resolver policy Ben Schwartz
- Re: [Add] Mozilla's DoH resolver policy Adam Roach
- [Add] ECS privacy concerns, alternatives? Brian Dickson
- Re: [Add] ECS privacy concerns, alternatives? Brian Dickson
- Re: [Add] ECS privacy concerns, alternatives? Mark Delany
- Re: [Add] ECS privacy concerns, alternatives? Brian Dickson
- Re: [Add] ECS privacy concerns, alternatives? Mark Delany
- Re: [Add] Mozilla's DoH resolver policy Christian Huitema
- Re: [Add] ECS privacy concerns, alternatives? Brian Dickson
- Re: [Add] Mozilla's DoH resolver policy Geoff Huston
- Re: [Add] Mozilla's DoH resolver policy Ralf Weber
- Re: [Add] Mozilla's DoH resolver policy Paul Wouters
- Re: [Add] ECS privacy concerns, alternatives? Erik Nygren
- Re: [Add] ECS privacy concerns, alternatives? Joe Abley
- Re: [Add] ECS privacy concerns, alternatives? Brian Dickson
- Re: [Add] ECS privacy concerns, alternatives? Joe Abley
- Re: [Add] ECS privacy concerns, alternatives? Paul Hoffman
- Re: [Add] ECS privacy concerns, alternatives? Brian Dickson
- Re: [Add] Mozilla's DoH resolver policy Hollenbeck, Scott
- Re: [Add] Mozilla's DoH resolver policy Adam Roach
- Re: [Add] ECS privacy concerns, alternatives? Puneet Sood
- Re: [Add] ECS privacy concerns, alternatives? Erik Kline
- Re: [Add] ECS privacy concerns, alternatives? Brian Dickson