IETF Logo Mail Archive

Re: [dns-privacy] [Ext] next steps for draft-opportunistic-adotq

Ilari Liusvaara <ilariliusvaara@welho.com> Wed, 24 March 2021 09:50 UTC

Return-Path: <ilariliusvaara@welho.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E12103A28F4 for <dns-privacy@ietfa.amsl.com>; Wed, 24 Mar 2021 02:50:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.498
X-Spam-Level:
X-Spam-Status: No, score=-1.498 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, KHOP_HELO_FCRDNS=0.399, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eSQR3e9uwmI4 for <dns-privacy@ietfa.amsl.com>; Wed, 24 Mar 2021 02:50:08 -0700 (PDT)
Received: from welho-filter2.welho.com (welho-filter2b.welho.com [83.102.41.28]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9EE723A28E7 for <dns-privacy@ietf.org>; Wed, 24 Mar 2021 02:50:08 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by welho-filter2.welho.com (Postfix) with ESMTP id A6307D0560 for <dns-privacy@ietf.org>; Wed, 24 Mar 2021 11:50:05 +0200 (EET)
X-Virus-Scanned: Debian amavisd-new at pp.htv.fi
Received: from welho-smtp2.welho.com ([IPv6:::ffff:83.102.41.85]) by localhost (welho-filter2.welho.com [::ffff:83.102.41.24]) (amavisd-new, port 10024) with ESMTP id cwp19XrxLQYV for <dns-privacy@ietf.org>; Wed, 24 Mar 2021 11:50:05 +0200 (EET)
Received: from LK-Perkele-VII2 (78-27-97-211.bb.dnainternet.fi [78.27.97.211]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by welho-smtp2.welho.com (Postfix) with ESMTPSA id 5435972 for <dns-privacy@ietf.org>; Wed, 24 Mar 2021 11:50:04 +0200 (EET)
Date: Wed, 24 Mar 2021 11:50:04 +0200
From: Ilari Liusvaara <ilariliusvaara@welho.com>
To: dns-privacy@ietf.org
Message-ID: <YFsLTEen4UHa0/NU@LK-Perkele-VII2.locald>
References: <2ba5ac12c24eaee4c51de2cd2c1693e9bd1fd8b2.camel@powerdns.com> <4bc96140-454e-0746-83b3-bb1331cf7cce@cs.tcd.ie> <ADB00FD5-A6EA-4D05-84E8-A44A2E40BE7C@icann.org> <8363070a-8fc5-2d20-a9aa-45673d1515ac@innovationslab.net> <5861CBBC-4C76-4455-90FF-B127171CF054@rfc1035.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <5861CBBC-4C76-4455-90FF-B127171CF054@rfc1035.com>
Sender: ilariliusvaara@welho.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/c53-yvVpr6or2-pcUXXHNGSiufg>
Subject: Re: [dns-privacy] [Ext] next steps for draft-opportunistic-adotq
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Mar 2021 09:50:19 -0000

On Tue, Mar 23, 2021 at 02:50:00PM +0000, Jim Reid wrote:
> 
> 
> > On 23 Mar 2021, at 14:16, Brian Haberman <brian@innovationslab.net> wrote:
> > 
> > Is there an issue with putting SVCB info in the TLD zones?
> 
> Yes - for gTLDs. Almost all of them have contracts with ICANN. Adding
> SVCB records to ccTLDs is easier (in principle) since few (any?) of
> them have contracts with ICANN. Since those gTLD contracts say “no
> SVCB records”, registries can’t/shouldn’t add them to their zones.

I took a look how many gTLDs have in-zone nameservers:


Found total of 1503 TLDs:
- 779 TLDs have in-bailiwick nameserver(s).
- The remaining 724 have all their nameservers in another TLD.

Of the 779 TLDs that have in-bailiwick nameserver(s):
- 58 TLDs have in-zone nameserver(s).
- The remaining 721 have all their nameservers in other zone(s).

Of the 58 TLDs that have in-zone nameserver(s):
- 3 are gTLDs.
- The remaining 55 are ccTLDs.

The 3 gTLDs with in-zone nameservers are:
- brussels.
- tel.
- vlaanderen.


So looks like 1500 out of 1503 TLDs could add new rrtypes to their
nsname nodes. And the remaining 3 could do so after spliting out the
subzone with their nameservers into full zone.


Notes:

- Some TLDs have both in-bailiwick and out-bailiwick nameservers. E.g.,
  ad.
- All 2-character names are assumed to be ccTLD, everything else is
  assumed to be gTLD.
- None of the gTLDs with in-zone nameservers have any out-zone
  nameservers.
- Some ccTLDs have both in-zone and out-zone nameservers. E.g., at.
- None of the gTLDs with in-zone nameservers have any nameservers
  directly under apex.
- There are some ccTLDs that have put their nameservers directly under
  their apex. E.g., fi.




-Ilari

v2.23.0 | Report a Bug | By Email