IETF Logo Mail Archive

Re: [dbound] DBOUND interest @ IETF 114?

John Levine <johnl@taugh.com> Wed, 27 July 2022 18:26 UTC

Return-Path: <johnl@iecc.com>
X-Original-To: dbound@ietfa.amsl.com
Delivered-To: dbound@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 67EF6C14F721 for <dbound@ietfa.amsl.com>; Wed, 27 Jul 2022 11:26:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.859
X-Spam-Level:
X-Spam-Status: No, score=-1.859 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.248, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=iecc.com header.b=WJKTaca8; dkim=pass (2048-bit key) header.d=taugh.com header.b=W1sxDNos
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LOEOQlEoOzTb for <dbound@ietfa.amsl.com>; Wed, 27 Jul 2022 11:26:11 -0700 (PDT)
Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9E733C14F5E1 for <dbound@ietf.org>; Wed, 27 Jul 2022 11:26:11 -0700 (PDT)
Received: (qmail 19636 invoked from network); 27 Jul 2022 18:26:09 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=iecc.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:cleverness; s=4ca7.62e18341.k2207; bh=WEZJU/qFEFvu6DgT/55jBN7VzGWBW/n1iZdJmBPEsg4=; b=WJKTaca8FFb8Ypct1tVHunFpWNXuc7vk+0HYDE7/PYO90WdBGqEHHmDLw9tOP6oBUFLvt55NKTcGShua3Rb+IgjG3k+5/6DvBH9pOY5Il6SV4ssMrUDp9XiVRcSxCNNupnKADha1vl+GB20j+C5WSXJ4xkN9qrFv8+Uek3uTbgRt3SxBAzaMKMy4kUcxWi8jS2+xRzfH1DJItLsKmCjBRIVCUml0waT/YvVD+JnL5Rfj+eyfLn4jqJgxeEG+KR80zziyJeZbKseQoa3lB1BKyE3qvVp4mAulaOEYo3LDVFRKgGz9zOvBVW+KJpj5RdjiCdCLrwEjDXXevzy8BEgVXA==
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=taugh.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:cleverness; s=4ca7.62e18341.k2207; bh=WEZJU/qFEFvu6DgT/55jBN7VzGWBW/n1iZdJmBPEsg4=; b=W1sxDNos8Vxrl2ar0Cdc0DkoAUDF1mx9ev5RCzqtYYomAO3lFpqwDGcY1ii4Ra0Q0HRMweq1fnum5gG1/XRn3RYr43WwtQY5OdZqozbIGNwG+kRvmy2Mfi5D44pWPJ2UKWBkNvMF2AAG93MRqW8COhhssMj/1iYemW0ChWKAvXouaf6mEMxCtR+Un2J8TyrEuPBUtkszX/TK4y3KbRIDSeGSJUO8OgVBmF+5s4dJQ3NznlPO2OBg7gLNz11JWIdhBljC7R5ZN1j2X/Q1FupKsbf0PmgXrkBmGt054MvApEIz9g6z+tVeKk1i56mZ0LnwjpjsmPa3Goo6D8UC0hA7zA==
Received: from dhcp-81f8.meeting.ietf.org ([IPv6:2001:470:1f07:1126::78:696d:6170]) by imap.iecc.com ([IPv6:2001:470:1f07:1126::78:696d:6170]) with ESMTPS (TLS1.3 ECDHE-RSA AES-256-GCM AEAD) via TCP6; 27 Jul 2022 18:26:08 -0000
Received: by dhcp-81f8.meeting.ietf.org (Postfix, from userid 501) id DE4FB46BAC60; Wed, 27 Jul 2022 14:26:06 -0400 (EDT)
Date: Wed, 27 Jul 2022 14:26:06 -0400
Message-Id: <20220727182607.DE4FB46BAC60@dhcp-81f8.meeting.ietf.org>
From: John Levine <johnl@taugh.com>
To: dbound@ietf.org
Cc: sklist@kitterman.com
In-Reply-To: <11286957.7S9uVmf1iz@zini-1880>
Organization: Taughannock Networks
X-Headerized: yes
Cleverness: minimal
Mime-Version: 1.0
Content-type: text/plain; charset="utf-8"
Content-transfer-encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dbound/iI1F2k2mTx-bQwCrZJ9Gl45cgjc>
Subject: Re: [dbound] DBOUND interest @ IETF 114?
X-BeenThere: dbound@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: DNS tree bounds <dbound.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dbound>, <mailto:dbound-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dbound/>
List-Post: <mailto:dbound@ietf.org>
List-Help: <mailto:dbound-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dbound>, <mailto:dbound-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 27 Jul 2022 18:26:16 -0000

It appears that Scott Kitterman  <sklist@kitterman.com> said:
>I'm not at the meeting, so won't be there to attend anything.
>
>I think the working group failed the last time because there were multiple 
>views of what problem we were solving.  Whatever you decide to do with this 
>stab at it, I would strongly encourage you to pick one problem, solve it, and 
>leave the rest for later.  We already know trying to solve it all hasn't been 
>successful.

In case the meeting is Friday after I leave, the problem my approach tries to
solve is basically the one that the PSL does, to define cut points in the DNS
and assert that names below each cut point are under different management (for
some flavor of management) than the cut point.

It goes slightly farther than the PSL in that you can put in flags to say
which flavor(s) of management apply at each cut point such as cookie origin, SSL
certificates, and DMARC.

I think it solves this specific problem well.  It doesn't try to do anything else.

R's,
John

v2.23.0 | Report a Bug | By Email