Re: [apps-discuss] CONTEXTJ in TLD DNS-Labels (draft-liman-tld-names-05)

Patrik Fältström <patrik@frobbit.se> Wed, 20 July 2011 06:34 UTC

Return-Path: <patrik@frobbit.se>
X-Original-To: apps-discuss@ietfa.amsl.com
Delivered-To: apps-discuss@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7896721F8B2F for <apps-discuss@ietfa.amsl.com>; Tue, 19 Jul 2011 23:34:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.299
X-Spam-Level:
X-Spam-Status: No, score=-102.299 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, MIME_8BIT_HEADER=0.3, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mwSCXDkExGIP for <apps-discuss@ietfa.amsl.com>; Tue, 19 Jul 2011 23:34:08 -0700 (PDT)
Received: from srv01.frobbit.se (srv01.frobbit.se [IPv6:2a02:80:3ffe::39]) by ietfa.amsl.com (Postfix) with ESMTP id B694F21F8B2E for <apps-discuss@ietf.org>; Tue, 19 Jul 2011 23:34:07 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by srv01.frobbit.se (Postfix) with ESMTP id 9C8871186AA56; Wed, 20 Jul 2011 08:34:05 +0200 (CEST)
X-Virus-Scanned: amavisd-new at frobbit.se
Received: from srv01.frobbit.se ([127.0.0.1]) by localhost (srv01.frobbit.se [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Di2WpdEicbKT; Wed, 20 Jul 2011 08:34:05 +0200 (CEST)
Received: from [IPv6:2a02:80:3ffc::14] (unknown [IPv6:2a02:80:3ffc::14]) (Authenticated sender: paf01) by srv01.frobbit.se (Postfix) with ESMTP id 2559A1186AA53; Wed, 20 Jul 2011 08:34:05 +0200 (CEST)
Mime-Version: 1.0 (Apple Message framework v1084)
Content-Type: text/plain; charset="us-ascii"
From: Patrik Fältström <patrik@frobbit.se>
In-Reply-To: <C6CF1575-D301-4802-B877-8130781B268B@vpnc.org>
Date: Wed, 20 Jul 2011 08:34:04 +0200
Content-Transfer-Encoding: quoted-printable
Message-Id: <640EE2B8-AB0B-40E5-9815-4A6A5E20FA79@frobbit.se>
References: <B464B2C6607E04FD0572AA74@192.168.1.128> <CANp6Ttw4MaAJy2VRvZ8929oBju9jL3b69PkSyFLi-SC4YaNTnw@mail.gmail.com> <5AC1318B-A219-4056-BD14-C90BEE85669E@frobbit.se> <8159C20D-BF2B-42CB-9529-C870A2AD1572@vpnc.org> <E7E5E31E-89E7-46AF-9FA8-6CFD8F661376@frobbit.se> <C6CF1575-D301-4802-B877-8130781B268B@vpnc.org>
To: Paul Hoffman <paul.hoffman@vpnc.org>
X-Mailer: Apple Mail (2.1084)
Cc: apps-discuss <apps-discuss@ietf.org>
Subject: Re: [apps-discuss] CONTEXTJ in TLD DNS-Labels (draft-liman-tld-names-05)
X-BeenThere: apps-discuss@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: General discussion of application-layer protocols <apps-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/apps-discuss>
List-Post: <mailto:apps-discuss@ietf.org>
List-Help: <mailto:apps-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Jul 2011 06:34:08 -0000

On 19 jul 2011, at 21.49, Paul Hoffman wrote:

> We have already seen the perceived need for these characters in the root zone, and we have not seen any statement of how they can cause harm *in the root zone*. "Phishing" in the root zone, given the horrendous weight of the process for getting new names put in the root zone, is not a threat. Which others do you believe that need to be weighed against the value of the characters?

Yes, phishing in the root zone. People putting URLs on web pages that you click on.

It is tons of code easier in various applications to "know" that a code point is either allowed or not allowed in the TLD than having context dependent rules that otherwise is the option.

So the question is whether security software can filter out URLs with ZWNJ in the TLD as dangerous or not.

   Patrik