IETF Logo Mail Archive

Re: [arch-d] [DNSOP] Call for Comment: <draft-iab-arpa-authoritative-servers-00> (Nameservers for the Address and Routing Parameter Area ("arpa") Domain)

Warren Kumari <warren@kumari.net> Thu, 06 May 2021 20:02 UTC

Return-Path: <warren@kumari.net>
X-Original-To: architecture-discuss@ietfa.amsl.com
Delivered-To: architecture-discuss@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4BBD43A2EDC for <architecture-discuss@ietfa.amsl.com>; Thu, 6 May 2021 13:02:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=kumari-net.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7OGm0jiuIH05 for <architecture-discuss@ietfa.amsl.com>; Thu, 6 May 2021 13:01:56 -0700 (PDT)
Received: from mail-lf1-x12d.google.com (mail-lf1-x12d.google.com [IPv6:2a00:1450:4864:20::12d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 588923A2ED4 for <architecture-discuss@ietf.org>; Thu, 6 May 2021 13:01:56 -0700 (PDT)
Received: by mail-lf1-x12d.google.com with SMTP id j10so9486600lfb.12 for <architecture-discuss@ietf.org>; Thu, 06 May 2021 13:01:56 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kumari-net.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=+ZsMakbVYrPbzRICAeE7AKWL2483nbcy/geUKy95fnQ=; b=GSDZXgx76+Zgdt74uDto6wb7XalofslsCT7ZJXH7eGGM0++GS2pP1ohIafYYk1Mewu uLjUKX6aYuMX9xJ3psmOxuSppzkfwv3cvDbxyJS7kvtE49kIJoWCTI6zr+Wqit7S5z1W uGHsVT3FnQu1OgnAi5Glxkm/RNrFu57mm24Nn1fTN7OWsRSur044+lbPoauxGaRD2XoC rmVuovQX5nWoJ2ihmPp4k9l6qXx03R7MUSTjaH3YaY0dIWnKPhIrOdBDQkXaR/Kf6rLz LI5mFvbVZhZ/p8tZnFk86KX6MBH6BENttWkj4DLHplXwu4shWWmo0+CEjc1o8Gly+vQ5 jFKQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=+ZsMakbVYrPbzRICAeE7AKWL2483nbcy/geUKy95fnQ=; b=pGwhGmvi9RSqvLpVJ5sL9oSCmh+7JxiLXLBbpkO3V1V8EmXFUUmw2RVLtPZ1yb5HZe 2MgzfmNREYKdlyRKbW71/82kxuqpxk1qZdiXPl3CcH1UvOkxzJS93n7NVk6t743HKcu0 91EeNRHYAxDEfm7bbAfp86OWCIcrwxYDEVpgfwKMUM8fvVXzgXslpR9YliszyRrF1Q46 3qU8mWVm8HR8BkP9jYDdArxBUxRxQJ9WTzJXANlNXX4Xb6xSaH+5Bq5eLAKUwZ2Plpgw 9GvNRAC4B5Wb4yo1PfOlegAmTePe4buJRQ4xpwIWhm90D6JW03+xOX4Wys/gCe/hRToE 2Zyg==
X-Gm-Message-State: AOAM5314Zi02I+PmNVPeeVKthAKonRERgVsK6mUliRX46y5SLiEJBtHG E9CopVsnwFGmtaj6LqNkCwSqZwEpA6uCQtleWk8eug==
X-Google-Smtp-Source: ABdhPJxz4LpkuY2v7IF1cYOggC8t/B87gsKcmE3kwigPrYEHAaHWc+oKbLLSzrHRzJRWqHUxL56/f8YSuQ/byRMAAFs=
X-Received: by 2002:a05:6512:b95:: with SMTP id b21mr3972815lfv.491.1620331313599; Thu, 06 May 2021 13:01:53 -0700 (PDT)
MIME-Version: 1.0
References: <162032688379.30751.17216920147784179639@ietfa.amsl.com> <850726D3-4ED3-4D12-AB36-E386D90210D9@hopcount.ca> <CADyWQ+EXQVS6gTEfd+2GzaSBP4e5VpHOoXAQTd=EfuA8eDrdOA@mail.gmail.com>
In-Reply-To: <CADyWQ+EXQVS6gTEfd+2GzaSBP4e5VpHOoXAQTd=EfuA8eDrdOA@mail.gmail.com>
From: Warren Kumari <warren@kumari.net>
Date: Thu, 06 May 2021 16:01:17 -0400
Message-ID: <CAHw9_iLDhd7o1-+CYx4F==VJkCVFJsAUjqt5A2Nxr_XU-HNfRQ@mail.gmail.com>
To: Tim Wicinski <tjw.ietf@gmail.com>
Cc: Joe Abley <jabley@hopcount.ca>, dnsop <dnsop@ietf.org>, IAB <iab@iab.org>, architecture-discuss@ietf.org, IETF Announcement List <ietf-announce@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000005dab7a05c1aec83b"
Archived-At: <https://mailarchive.ietf.org/arch/msg/architecture-discuss/cYVBWcuikJJtqexii5bBtWLUoMo>
Subject: Re: [arch-d] [DNSOP] Call for Comment: <draft-iab-arpa-authoritative-servers-00> (Nameservers for the Address and Routing Parameter Area ("arpa") Domain)
X-BeenThere: architecture-discuss@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: open discussion forum for long/wide-range architectural issues <architecture-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/architecture-discuss/>
List-Post: <mailto:architecture-discuss@ietf.org>
List-Help: <mailto:architecture-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 06 May 2021 20:02:02 -0000

On Thu, May 6, 2021 at 3:43 PM Tim Wicinski <tjw.ietf@gmail.com> wrote:

> (no hats)
>

<aol>Me too!</aol>

I've previously reviewed this (somewhere!), and my views remain the same:
1: looks good to me and 2: this is legely an internal to IANA matter. Nice
of 'em to ask, but whatever...

W



>
> I'm glad this is moving forward.   Joe's point about 5855 is valid on the
> naming, and the zone cuts.
>
> It's never mentioned the zone is signed, though I'm sure everyone here
> reading it expects it.
>
> Nit:   At the top, instead of "Updates: RFC3172" it should be "Updates:
> 3172".
>
> tim
>
>
> On Thu, May 6, 2021 at 3:26 PM Joe Abley <jabley@hopcount.ca> wrote:
>
>> On 6 May 2021, at 14:48, IAB Executive Administrative Manager <
>> execd@iab.org> wrote:
>>
>> > This is an announcement of an IETF-wide Call for Comment on
>> > draft-iab-arpa-authoritative-servers-00.
>> >
>> > The document is being considered for publication as an Informational
>> RFC
>> > within the IAB stream, and is available for inspection at:
>> > <https://datatracker.ietf.org/doc/draft-iab-arpa-authoritative-servers/
>> >
>> >
>> > The Call for Comment will last until 2021-06-03. Please send comments to
>> > architecture-discuss@ietf.org and iab@iab.org.
>>
>> I have read this document. It is good to see this work proceeding. It has
>> been in the fridge for a long time and it's good to get it on the stove.
>>
>> I have a few minor suggestions that the authors might like to consider.
>>
>> 1. In various places the text refers variously to phrases like "root
>> operations" and "root server operations". I think the terminology could use
>> some consistency; there are differences between the management of the root
>> zone as a data object, its provisioning through the IANA functions operator
>> and the Root Zone Maintainer and serving it on nameservers operated by Root
>> Server Operators. If the document has things to say about this, even at a
>> high level, I don't think there is harm in being clear. The authors are
>> more aware of these differences than most other people and I don't think
>> they need my editorial suggestions in this regard, but if it seems like it
>> would be helpful to be more explicit by way of illustration I'd be happy to.
>>
>> 2. RFC 5855 which the document cites uses a naming scheme for the
>> IP6.ARPA servers of the form <letter>.IP6-SERVERS.ARPA, and
>> <letter>.IN-ADDR-SERVERS.ARPA for the IN-ADDR.ARPA servers. It seems to me
>> that it would do no harm to choose a scheme for ARPA of the form
>> <letter>.ARPA-SERVERS.ARPA for the ARPA zone; response size differences are
>> minimal thanks to label compression and I think the scheme is more
>> consistent (also with the names of the root servers). It also helps, I
>> think, to give the impression that these servers are intended for a single
>> purpose and are not general-purpose nameservers intended also to host other
>> zones in the future (which I think would be a mistake).
>>
>> 3. This document describes a naming scheme under NS.ARPA (but see 2,
>> above) without specifying whether it should be provisioned within the ARPA
>> zone, or in a separate zone as was specified in RFC 5855. If the practice
>> established in RFC 5855 (and in the root zone before it) was continued,
>> this would be a separate zone hosted on the same servers as ARPA. If this
>> ambiguity is deliberate (if it's desirable to leave this up to the whim of
>> the IANA functions operator) then it would be good to document why. I think
>> there are operational advantages to having zone cuts in the namespace, e.g.
>> to preserve the possibility of hosting the child zones elsewhere, perhaps
>> because it becomes operationally useful to sign them differently, speaking
>> of which:
>>
>> 4. There's no mention of whether NS.ARPA (again, see 2, above), if it is
>> provisioned as a separate zone, should be signed. Given the ambiguity in
>> (3) I think this is a gap that could usefully be filled. I think it should
>> be signed.
>>
>> 5. The term "in-bailiwick" feels awkward to me in the context of section
>> 3.1, since to me it's a term associated with response construction and what
>> is being discussed in that paragraph is namespace. However, since every TLD
>> requires glue in the root zone I think the whole of the last paragraph
>> could be safely removed. It's sufficient that ARPA be delegated according
>> to normal practices for handling TLDs, and I don't think it makes sense to
>> give the appearance of including special requirements for ARPA in this
>> document, even if today they match everything else.
>>
>> Hope this is helpful, and once again I'm glad to see this work is moving
>> forward.
>>
>>
>> Joe
>> _______________________________________________
>> DNSOP mailing list
>> DNSOP@ietf.org
>> https://www.ietf.org/mailman/listinfo/dnsop
>>
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop
>


-- 
The computing scientist’s main challenge is not to get confused by the
complexities of his own making.
  -- E. W. Dijkstra

v2.23.0 | Report a Bug | By Email