Re: [apps-discuss] "finding registered domains"

Phillip Hallam-Baker <hallam@gmail.com> Mon, 11 March 2013 11:42 UTC

MIME-Version: 1.0
In-Reply-To: <CAMm+LwiHvTmJBxLSPh7ZVRMOyy0-UpRBak9vKL7To9n1sezw5A@mail.gmail.com>
References: <20130310042250.GE33497@mx1.yitter.info> <75239F19-93AF-40EF-A367-0E289A6D1269@frobbit.se> <20130310182928.GE37514@mx1.yitter.info> <2EB68C60-4146-4072-A005-DA8DD9AF7993@frobbit.se> <CAMm+LwiHvTmJBxLSPh7ZVRMOyy0-UpRBak9vKL7To9n1sezw5A@mail.gmail.com>
Date: Mon, 11 Mar 2013 07:42:04 -0400
Message-ID: <CAMm+LwhSRypxirhUk3Yb4MDj7yuYbuqhwYF6r4ojeYjWQrhy8g@mail.gmail.com>
From: Phillip Hallam-Baker <hallam@gmail.com>
To: Patrik Fältström <paf@frobbit.se>
Content-Type: text/plain; charset="ISO-8859-1"
Cc: apps-discuss@ietf.org
Subject: Re: [apps-discuss] "finding registered domains"
Precedence: list

Looks like my plane is not getting in till 10:15, probably won't make
apps area wg.

My main concern is that anyone with useful information be able to
share it through the DNS rather than perpetuate a host of external
registries and folklore.

The new TLD operators are positioned to provide information and that
would be useful.


Switching the cookie protocol so that it is less insane seems like a
good thing to do but takes longer.


On Sun, Mar 10, 2013 at 3:12 PM, Phillip Hallam-Baker <hallam@gmail.com> wrote:
> I think that there are two separate sets of security requirements here
> and there is therefore a need to be able to state either
>
> * This domain is a public delegation point
> * This domain is NOT a public delegation point.
>
> Andrew's proposal seems to be limited to the security issues of
> cookies. I think there is a much better way to solve the security
> problems of cookies, one that is guaranteed to be 100% reliable,
> albeit not one that is likely to be acceptable...
>
> The reason I want both types of assertion is that we use the public
> suffix list in a different way when we are issuing a certificate and
> the security concerns are rather different as a result. In particular
> CAs are only ever going to consider information retrieved from the DNS
> as 'evidence'. It is never going to be considered to be 'proof' and
> never relied on to the exclusion of any other information.



-- 
Website: http://hallambaker.com/

[apps-discuss] "finding registered domains" Andrew Sullivan
Re: [apps-discuss] "finding registered domains" Patrik Fältström
Re: [apps-discuss] "finding registered domains" Paul Hoffman
Re: [apps-discuss] "finding registered domains" Andrew Sullivan
Re: [apps-discuss] "finding registered domains" Patrik Fältström
Re: [apps-discuss] "finding registered domains" Phillip Hallam-Baker
Re: [apps-discuss] "finding registered domains" Phillip Hallam-Baker
Re: [apps-discuss] "finding registered domains" Andrew Sullivan
Re: [apps-discuss] "finding registered domains" =JeffH
Re: [apps-discuss] "finding registered domains" J. Trent Adams
Re: [apps-discuss] "finding registered domains" Murray S. Kucherawy
Re: [apps-discuss] "finding registered domains" Murray S. Kucherawy
Re: [apps-discuss] "finding registered domains" Andrew Sullivan
Re: [apps-discuss] "finding registered domains" Murray S. Kucherawy
Re: [apps-discuss] "finding registered domains" Hill, Brad
Re: [apps-discuss] "finding registered domains" Andrew Sullivan
Re: [apps-discuss] "finding registered domains" Phillip Hallam-Baker
Re: [apps-discuss] "finding registered domains" Murray S. Kucherawy
Re: [apps-discuss] "finding registered domains" John Levine
Re: [apps-discuss] "finding registered domains" Andrew Sullivan
Re: [apps-discuss] "finding registered domains" Andrew Sullivan
Re: [apps-discuss] "finding registered domains" Peter Saint-Andre
Re: [apps-discuss] "finding registered domains" Murray S. Kucherawy
Re: [apps-discuss] "finding registered domains" Andrew Sullivan
Re: [apps-discuss] "finding registered domains" Andrew Sullivan
Re: [apps-discuss] "finding registered domains" J. Trent Adams
Re: [apps-discuss] "finding registered domains" Murray S. Kucherawy
Re: [apps-discuss] "finding registered domains" Andrew Sullivan
Re: [apps-discuss] "finding registered domains" Andrew Sullivan
Re: [apps-discuss] "finding registered domains" MH Michael Hammer (5304)
Re: [apps-discuss] "finding registered domains" Jiankang YAO
Re: [apps-discuss] "finding registered domains" Phillip Hallam-Baker
Re: [apps-discuss] "finding registered domains" John Levine
Re: [apps-discuss] "finding registered domains" Phillip Hallam-Baker
Re: [apps-discuss] "finding registered domains" Andrew Sullivan
Re: [apps-discuss] "finding registered domains" Andrew Sullivan
Re: [apps-discuss] "finding registered domains" Hugo Salgado
Re: [apps-discuss] "finding registered domains" Behnam Esfahbod
Re: [apps-discuss] "finding registered domains" Hill, Brad
Re: [apps-discuss] "finding registered domains" Hill, Brad
Re: [apps-discuss] "finding registered domains" Andrew Sullivan
Re: [apps-discuss] "finding registered domains" Andrew Sullivan
Re: [apps-discuss] "finding registered domains" Andrew Sullivan
Re: [apps-discuss] "finding registered domains" Andrew Sullivan
Re: [apps-discuss] "finding registered domains" Stephane Bortzmeyer
Re: [apps-discuss] "finding registered domains" John R Levine
Re: [apps-discuss] "finding registered domains" Stephane Bortzmeyer
Re: [apps-discuss] "finding registered domains" John R Levine