Re: [apps-review] [v6ops] Review of: draft-ietf-v6ops-v6-aaaa-whitelisting-implications-03 *(formal for apps area)*

Joel Jaeggli <joelja@bogus.com> Tue, 31 May 2011 06:21 UTC

Return-Path: <joelja@bogus.com>
X-Original-To: apps-review@ietfa.amsl.com
Delivered-To: apps-review@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 11AACE06D4; Mon, 30 May 2011 23:21:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -101.682
X-Spam-Level:
X-Spam-Status: No, score=-101.682 tagged_above=-999 required=5 tests=[AWL=0.316, BAYES_00=-2.599, HTML_MESSAGE=0.001, J_CHICKENPOX_13=0.6, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xEwwMb1+HQHt; Mon, 30 May 2011 23:21:05 -0700 (PDT)
Received: from nagasaki.bogus.com (nagasaki.bogus.com [IPv6:2001:418:1::81]) by ietfa.amsl.com (Postfix) with ESMTP id E43EBE06BE; Mon, 30 May 2011 23:21:04 -0700 (PDT)
Received: from wifi-216-59.mtg.afnog.org ([196.200.216.59]) (authenticated bits=0) by nagasaki.bogus.com (8.14.4/8.14.4) with ESMTP id p4V6KIDA010617 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NOT); Tue, 31 May 2011 06:20:38 GMT (envelope-from joelja@bogus.com)
Mime-Version: 1.0 (Apple Message framework v1084)
Content-Type: multipart/alternative; boundary=Apple-Mail-4--49386231
From: Joel Jaeggli <joelja@bogus.com>
In-Reply-To: <BANLkTik4XTeWDXr5OQ+i5PxjOaSehwfx3smE_p+W783Hqw4-yQ@mail.gmail.com>
Date: Mon, 30 May 2011 23:20:11 -0700
Message-Id: <7006BAA9-E515-42E7-85E2-06E1263CAD0E@bogus.com>
References: <CA084387.289FF%jason_livingood@cable.comcast.com> <4DE3B8FD.7040209@dcrocker.net> <20110530154841.GM45955@Space.Net> <BANLkTik4XTeWDXr5OQ+i5PxjOaSehwfx3smE_p+W783Hqw4-yQ@mail.gmail.com>
To: Lorenzo Colitti <lorenzo@google.com>
X-Mailer: Apple Mail (2.1084)
X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.2.7 (nagasaki.bogus.com [147.28.0.81]); Tue, 31 May 2011 06:20:53 +0000 (UTC)
X-Mailman-Approved-At: Tue, 31 May 2011 08:08:35 -0700
Cc: IETF Discussion <ietf@ietf.org>, "v6ops@ietf.org" <v6ops@ietf.org>, Dave Crocker <dcrocker@bbiw.net>, Gert Doering <gert@space.net>, Apps Review <apps-review@ietf.org>
Subject: Re: [apps-review] [v6ops] Review of: draft-ietf-v6ops-v6-aaaa-whitelisting-implications-03 *(formal for apps area)*
X-BeenThere: apps-review@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Apps Area Review List <apps-review.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/apps-review>, <mailto:apps-review-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/apps-review>
List-Post: <mailto:apps-review@ietf.org>
List-Help: <mailto:apps-review-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/apps-review>, <mailto:apps-review-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 31 May 2011 06:21:06 -0000

On May 30, 2011, at 11:09 PM, Lorenzo Colitti wrote:

> On Mon, May 30, 2011 at 8:48 AM, Gert Doering <gert@space.net> wrote:
> I have no idea what a "v6 DNS ACL" should be, except maybe an ACL that
> protects which IPv6 clients are allowed to talk to a DNS server.
> 
> ACL is the wrong term. Saying it's an ACL makes it easy to make the argument that whoever is implementing this is denying access to a particular resource (the AAAA record).
> 
> In fact, the opposite is true - by electing not to return an AAAA record, the implementer is able to allow access to a particular resource (the content that the user wants to reach) instead of publishing the resource over IPv6 where some users can't usefully reach it.
> 
> Which is of course, the root of the problem here. It is the reason why many large website operators have either implemented whitelisting (Google, Facebook) or have announced that they will be implementing whitelisting (Yahoo, Akamai). And it is the reason why said website operators are not contributing to this document.

But you've contributed to this document, so have others from that list.

> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org
> https://www.ietf.org/mailman/listinfo/v6ops