IETF Logo Mail Archive

Re: [dns-privacy] Joel Jaeggli's Discuss on draft-ietf-dprive-edns0-padding-02: (with DISCUSS)

Mark Andrews <marka@isc.org> Tue, 01 March 2016 00:53 UTC

Return-Path: <marka@isc.org>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A04661A701D; Mon, 29 Feb 2016 16:53:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.907
X-Spam-Level:
X-Spam-Status: No, score=-1.907 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.006, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id teUTCht3Xu3l; Mon, 29 Feb 2016 16:53:26 -0800 (PST)
Received: from mx.pao1.isc.org (mx.pao1.isc.org [IPv6:2001:4f8:0:2::2b]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B18C81A7017; Mon, 29 Feb 2016 16:53:26 -0800 (PST)
Received: from zmx1.isc.org (zmx1.isc.org [149.20.0.20]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx.pao1.isc.org (Postfix) with ESMTPS id 2B1EA349315; Tue, 1 Mar 2016 00:53:20 +0000 (UTC)
Received: from zmx1.isc.org (localhost [127.0.0.1]) by zmx1.isc.org (Postfix) with ESMTPS id 20264160099; Tue, 1 Mar 2016 00:53:20 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1]) by zmx1.isc.org (Postfix) with ESMTP id 0D3401600B6; Tue, 1 Mar 2016 00:53:20 +0000 (UTC)
Received: from zmx1.isc.org ([127.0.0.1]) by localhost (zmx1.isc.org [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id F-kRf4ZtE94U; Tue, 1 Mar 2016 00:53:19 +0000 (UTC)
Received: from rock.dv.isc.org (c110-21-49-25.carlnfd1.nsw.optusnet.com.au [110.21.49.25]) by zmx1.isc.org (Postfix) with ESMTPSA id BB2A8160099; Tue, 1 Mar 2016 00:53:19 +0000 (UTC)
Received: from rock.dv.isc.org (localhost [IPv6:::1]) by rock.dv.isc.org (Postfix) with ESMTP id 3C8B643838CC; Tue, 1 Mar 2016 11:53:17 +1100 (EST)
To: Warren Kumari <warren@kumari.net>
From: Mark Andrews <marka@isc.org>
References: <20160229195527.11806.46599.idtracker@ietfa.amsl.com> <20160229223447.78935641@pallas.home.time-travellers.org> <31a8330c-b14a-bd75-5432-380758f95a2c@bogus.com> <CAHw9_i+3Gu+Uoe+k3pgCtUUU_dj9N9VbBgiVhYPe4e73XVGdOA@mail.gmail.com>
In-reply-to: Your message of "Mon, 29 Feb 2016 23:14:55 -0000." <CAHw9_i+3Gu+Uoe+k3pgCtUUU_dj9N9VbBgiVhYPe4e73XVGdOA@mail.gmail.com>
Date: Tue, 01 Mar 2016 11:53:17 +1100
Message-Id: <20160301005317.3C8B643838CC@rock.dv.isc.org>
Archived-At: <http://mailarchive.ietf.org/arch/msg/dns-privacy/Yr5Z4skvnXzz103_UXihSxWT1L4>
Cc: Shane Kerr <shane@time-travellers.org>, tjw.ietf@gmail.com, draft-ietf-dprive-edns0-padding@ietf.org, joel jaeggli <joelja@bogus.com>, The IESG <iesg@ietf.org>, dprive-chairs@ietf.org, dns-privacy@ietf.org
Subject: Re: [dns-privacy] Joel Jaeggli's Discuss on draft-ietf-dprive-edns0-padding-02: (with DISCUSS)
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 01 Mar 2016 00:53:27 -0000

If you want warn fuzzies then say MUST NOT otherwise it is just
noise.

You can't enforce it.  Do you throw away clear text packets with
the option in the request / response?  Adding it won't break anything.
You make testing more difficult by saying MUST NOT.

I don't intend to change a line of code to support the pad option
in named.  I might add it to dig for testing but that is about it.
named will just continue to ignore the option on requests.

Mark

-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: marka@isc.org

v2.23.0 | Report a Bug | By Email