Re: [dns-privacy] Last Call: <draft-ietf-dprive-rfc7626-bis-03.txt> (DNS Privacy Considerations) to Informational RFC

S Moonesamy <> Fri, 24 January 2020 18:38 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 8B2A7120052; Fri, 24 Jan 2020 10:38:29 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -1.698
X-Spam-Status: No, score=-1.698 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_INVALID=0.1, DKIM_SIGNED=0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=no autolearn_force=no
Authentication-Results: (amavisd-new); dkim=fail (1024-bit key) reason="fail (message has been altered)"
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id hZINi47HH7o5; Fri, 24 Jan 2020 10:38:28 -0800 (PST)
Received: from ( []) by (Postfix) with ESMTP id 51EA412004C; Fri, 24 Jan 2020 10:38:28 -0800 (PST)
Received: from ([]) (authenticated bits=0) by (8.15.2/8.14.5) with ESMTPSA id 00OIcEX7003849 (version=TLSv1 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 24 Jan 2020 10:38:24 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple;; s=mail; t=1579891107; x=1579977507;; bh=0fKY6IWXNdIX9QTWxgyFgWZv2SZ0rYhkp04z2mJaWaY=; h=Date:To:From:Subject:In-Reply-To:References; b=j0TEv/eB873FIf9f3JnqgD2KczMzGus5djwFjDyqcw/cjLBDUDA/Z/ngrakiphe8j IP44plbxZd0w84xSoKB7LCraGtF6nSRvMFLFScYJRVd3MeazSahvevrx3xVDDU1Nbr XKmf+viS7HmMfVP4KrZPd/07r093F4fB79VB2G1A=
Message-Id: <>
X-Mailer: QUALCOMM Windows Eudora Version
Date: Fri, 24 Jan 2020 10:37:54 -0800
To: Brian Haberman <>,,, DNS Privacy Working Group <>
From: S Moonesamy <>
In-Reply-To: <>
References: <> <> <> <> <>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format=flowed
Archived-At: <>
Subject: Re: [dns-privacy] Last Call: <draft-ietf-dprive-rfc7626-bis-03.txt> (DNS Privacy Considerations) to Informational RFC
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Fri, 24 Jan 2020 18:38:30 -0000

Hi Brian,
At 06:44 AM 24-01-2020, Sara Dickinson wrote:
>Thanks to Brian for his explanation on this point which I agree with.

Thanks, I see an explanation at 
I used the word "validation" as it would be generally understood in 
(IETF) discussions about mail protocols.  From a DNS perspective, it 
would be a DNS query.  Mail User Agents (MUA) generally do not 
perform DNS queries on the domain part of an email address.  The only 
exception I can think of is "direct-to-MX".  It is unlikely that 
sending an email directly to a mail server (identified by the MX RR) 
would work as outgoing TCP port 25 is usually blocked by Internet 
Service Providers.  In terms of IETF specification, the MUA sumbits 
email to a MSA (RFC 6409).  The DNS queries are intended to be 
performed by the MSA (not the MUA).

In my opinion, the case made in the second paragraph of Section 3.2 
does not match how the code works on the Internet.  I prefer to move 
on instead of pushing back on this issue as I spent more than enough 
effort on it.

For what it is worth, I preferred not to get into a discussion about 
the Introduction section of the draft.  If I am ever asked about the 
text, I will say that I disagreed with it as it is like looking down 
on Internet users ...

S. Moonesamy