IETF Logo Mail Archive

Re: [dns-privacy] [Ext] next steps for draft-opportunistic-adotq

Jim Reid <jim@rfc1035.com> Tue, 23 March 2021 22:48 UTC

Return-Path: <jim@rfc1035.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 917613A18C3 for <dns-privacy@ietfa.amsl.com>; Tue, 23 Mar 2021 15:48:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.498
X-Spam-Level:
X-Spam-Status: No, score=-1.498 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, KHOP_HELO_FCRDNS=0.399, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9rvJrtwWUaWC for <dns-privacy@ietfa.amsl.com>; Tue, 23 Mar 2021 15:48:38 -0700 (PDT)
Received: from shaun.rfc1035.com (smtp.v6.rfc1035.com [IPv6:2001:4b10:100:7::25]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2D18B3A18C2 for <dns-privacy@ietf.org>; Tue, 23 Mar 2021 15:48:37 -0700 (PDT)
Received: from gromit.rfc1035.com (gromit.rfc1035.com [195.54.233.69]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by shaun.rfc1035.com (Postfix) with ESMTPSA id 7D9362420C28; Tue, 23 Mar 2021 22:48:36 +0000 (UTC)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.7\))
From: Jim Reid <jim@rfc1035.com>
In-Reply-To: <be5caa6b-316-4d6c-391e-884d3f4d51@nohats.ca>
Date: Tue, 23 Mar 2021 22:48:35 +0000
Cc: dns-privacy@ietf.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <A68841F4-B7CC-4AAC-BC9F-0961ADF2C8FA@rfc1035.com>
References: <2ba5ac12c24eaee4c51de2cd2c1693e9bd1fd8b2.camel@powerdns.com> <4bc96140-454e-0746-83b3-bb1331cf7cce@cs.tcd.ie> <ADB00FD5-A6EA-4D05-84E8-A44A2E40BE7C@icann.org> <8363070a-8fc5-2d20-a9aa-45673d1515ac@innovationslab.net> <5861CBBC-4C76-4455-90FF-B127171CF054@rfc1035.com> <1bed6998-49fe-3620-e3a2-b51942c795cc@nohats.ca> <C09A688F-A8BD-4AD0-B02A-7A476D26AFE8@rfc1035.com> <CAHbrMsCRdF6+RKq857tZFO_eTPtiCcQ3LMqhG6LG1=GEkmbk7Q@mail.gmail.com> <6557D045-3A78-47EB-B113-220DAD92A973@rfc1035.com> <be5caa6b-316-4d6c-391e-884d3f4d51@nohats.ca>
To: Paul Wouters <paul@nohats.ca>
X-Mailer: Apple Mail (2.3445.9.7)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/Vk_QEpCNbHnX4-EnP2o5FdyuRhM>
Subject: Re: [dns-privacy] [Ext] next steps for draft-opportunistic-adotq
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 23 Mar 2021 22:48:43 -0000


> On 23 Mar 2021, at 22:32, Paul Wouters <paul@nohats.ca> wrote:
> 
> So what is it that you are exactly objecting to? The syntax or the capability?

The capability - mostly. TLDs should not be publishing SVCB records for the reasons I outlined before.

I’m not too keen on using SVCB records apart from stubs finding resolvers on their local network. It’s OK for me to publish SVCB records in rfc1035.com for anyone who has the misfortune to be one of my local users and needs to find an encrypted resolver. IMO it’s not OK to do that in .com (say) for everthing on the planet that needs to lookup a .com domain name.

This is all somewhat moot because I very much doubt any busy TLD will ever turn on DoT or DoH on their authoritative name servers.

v2.23.0 | Report a Bug | By Email