Re: [dbound] [dmarc-ietf] Fwd: New Version Notification for draft-dcrocker-dns-perimeter-00.txt

"John R Levine" <johnl@taugh.com> Wed, 03 April 2019 19:06 UTC

Return-Path: <johnl@taugh.com>
X-Original-To: dbound@ietfa.amsl.com
Delivered-To: dbound@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DD73712016D for <dbound@ietfa.amsl.com>; Wed, 3 Apr 2019 12:06:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1536-bit key) header.d=iecc.com header.b=GdUa8KR1; dkim=pass (1536-bit key) header.d=taugh.com header.b=ZHORJZHD
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hxDAhwQjcj4c for <dbound@ietfa.amsl.com>; Wed, 3 Apr 2019 12:06:05 -0700 (PDT)
Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7BAC7120178 for <dbound@ietf.org>; Wed, 3 Apr 2019 12:06:04 -0700 (PDT)
Received: (qmail 12597 invoked from network); 3 Apr 2019 19:06:03 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=iecc.com; h=date:message-id:from:to:cc:subject:in-reply-to:references:mime-version:content-type:user-agent; s=3131.5ca5041b.k1904; bh=9Iw+6xP6Dct64Xmu3aWDaRvlhTAO/EYBtfnqwgEGOMY=; b=GdUa8KR11U1QEDmfYIlOJmZRXvt9vr16xZQQKMRebhAEA47eT0ztJBJRpmtxclvwxLfJl7ibVdLtJMIYzcQhPCKIC2o0PKMwiGfV24amERGBCzkgd0sauDLHBZSDz/IlIODVCA2Dea7T65U2qIhoAuzdsjGoSv6NDaQ0W60LR3cenXc4/77LtvGMQYxFUnOKv6CHx2/DPJJpiov5ExHCp9poqzSZWbJWOqFWkBwHvFU8i6tJe0vPwGJxThA5iJiU
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=taugh.com; h=date:message-id:from:to:cc:subject:in-reply-to:references:mime-version:content-type:user-agent; s=3131.5ca5041b.k1904; bh=9Iw+6xP6Dct64Xmu3aWDaRvlhTAO/EYBtfnqwgEGOMY=; b=ZHORJZHD9Dj0cMYyu92cQT6eDzdTVsfz+yMfmo4ihGMPbpu7ReKoStd1deA3AanGCz/LFpObXSA+azsxnf6VTlAXHVJ9OMHMU7Csv3Khy58B5NMOB3gY7iMoAUmaTxwMcST2cZVDM2IrFdZz3dGGWJkmatyFGFgUjsYq3DDOyI4+60ibRUlAy74scm+kudDNXOMXVkBnqd1MuXb4L28x4SaKLmLGb8imDSKijFMpReyWrnXna6TCtmeuRNEQc36M
Received: from localhost ([IPv6:2001:470:1f07:1126::78:696d:6170]) by imap.iecc.com ([IPv6:2001:470:1f07:1126::78:696d:6170]) with ESMTPS (TLS1.2 ECDHE-RSA AES-256-GCM AEAD) via TCP6; 03 Apr 2019 19:06:03 -0000
Date: 3 Apr 2019 15:06:02 -0400
Message-ID: <alpine.OSX.2.21.1904031459480.21189@ary.qy>
From: "John R Levine" <johnl@taugh.com>
To: dcrocker@bbiw.net
Cc: dmarc@ietf.org, dbound@ietf.org
In-Reply-To: <7e61b445-3844-f769-6a59-16fa396388d0@dcrocker.net>
References: <20190403175820.8391420115F376@ary.qy> <2445c121-f77b-0fa2-ca6a-402479abb5a7@dcrocker.net> <alpine.OSX.2.21.1904031430270.21189@ary.qy> <7e61b445-3844-f769-6a59-16fa396388d0@dcrocker.net>
User-Agent: Alpine 2.21 (OSX 202 2017-01-01)
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII; format=flowed
Archived-At: <https://mailarchive.ietf.org/arch/msg/dbound/HZYgbK5EDiYpjc0CSsc8CjJGeS8>
Subject: Re: [dbound] [dmarc-ietf] Fwd: New Version Notification for draft-dcrocker-dns-perimeter-00.txt
X-BeenThere: dbound@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: DNS tree bounds <dbound.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dbound>, <mailto:dbound-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dbound/>
List-Post: <mailto:dbound@ietf.org>
List-Help: <mailto:dbound-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dbound>, <mailto:dbound-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 03 Apr 2019 19:06:07 -0000

On Wed, 3 Apr 2019, Dave Crocker wrote:
> Now, about /end to end/ support, not just publishing...
>
> Please provide some examples comparable to your proposed use case.  That is, 
> what are new RRs that are getting well-scaled, on-going use, defined in say 
> the last 5 years?

There aren't many other than maybe CDS and CDSKEY.  TLSA was defined in 
2012 and Viktor says it's getting pretty wide use now, particularly 
considering that it needs DNSSEC.

On the other hand, there hasn't been anything with new server semantics 
since NSEC3 in 2008.

This is really an argument for dnsop, not dmarc or dbound.

Regards,
John Levine, johnl@taugh.com, Taughannock Networks, Trumansburg NY
Please consider the environment before reading this e-mail. https://jl.ly