Re: [dns-privacy] Some additional signalling ideas
Alexander Mayrhofer <alexander.mayrhofer@nic.at> Mon, 01 April 2019 06:19 UTC
Return-Path: <alexander.mayrhofer@nic.at>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0EE2912003F for <dns-privacy@ietfa.amsl.com>; Sun, 31 Mar 2019 23:19:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7
X-Spam-Level:
X-Spam-Status: No, score=-7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=nic.at
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 75D2PbwFBeFm for <dns-privacy@ietfa.amsl.com>; Sun, 31 Mar 2019 23:19:31 -0700 (PDT)
Received: from mail.sbg.nic.at (mail.sbg.nic.at [83.136.33.227]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C40EC120073 for <dns-privacy@ietf.org>; Sun, 31 Mar 2019 23:19:30 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nic.at; s=it2019; h=From:From:To:CC:Subject:Date:Message-Id:Content-Type:Received:Received; bh=4YGagZIbLtbiizfwPt0u53XskwhSs3mr/OfgN9wevxE=; b=DqMVuWHG60Y/T5nFIW93/Pti4m4ZHa9fjcOtTRS6EJSZV4gURL2t/UltADUQIUV0DJF5J+ujbWh+juHfmIA74RD2CVpj66LIIX70DyHKYaqRmMYle80Ba2mOT8Zr/9Uh0U+WgQ8Uyrscmx/8NdC0V1he1wXJd57LeOiHm8U78WqnuokygScZfqM0uQ6S93biQZtIZWPTKznqCaArhZuMzPYET2SPIyD4CwHkLw4Hq3y2LzO48GuHPZLGv0BfoA7KZB7KQw3Dwxk0IIrJfrGzsrlE4y0yBr8IWKmrXr0PqUcUzATPHi7Emyn0dDGlTmBvBarogKIMtvSjJNTZDl5K4Q==;
Received: from nics-exch2.sbg.nic.at ([10.17.175.6]) by mail.sbg.nic.at with XWall v3.53 ; Mon, 1 Apr 2019 08:19:28 +0200
Received: from NICS-EXCH2.sbg.nic.at ([fe80::a5b2:6e42:e54d:9d57]) by NICS-EXCH2.sbg.nic.at ([fe80::a5b2:6e42:e54d:9d57%12]) with mapi id 14.03.0439.000; Mon, 1 Apr 2019 08:19:22 +0200
Thread-Topic: [dns-privacy] Some additional signalling ideas
Thread-Index: AQHU58AuNE4qfzB6P06AJ4MnkGMQqKYm1ZRg
References: <CACsn0ck-SNweieak5Fn7TOLLZTvsQNo6+w3nezxKuZPq0Z4QNA@mail.gmail.com>
In-Reply-To: <CACsn0ck-SNweieak5Fn7TOLLZTvsQNo6+w3nezxKuZPq0Z4QNA@mail.gmail.com>
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.10.0.110]
From: Alexander Mayrhofer <alexander.mayrhofer@nic.at>
To: Watson Ladd <watsonbladd@gmail.com>, "dns-privacy@ietf.org" <dns-privacy@ietf.org>
Date: Mon, 01 Apr 2019 08:19:21 +0200
X-Assembled-By: XWall v3.53
Message-ID: <19F54F2956911544A32543B8A9BDE0759FC0E5B8@NICS-EXCH2.sbg.nic.at>
X-XWALL-BCKS: auto
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/umO1n0k7e13UIum0oea43IszjRA>
Subject: Re: [dns-privacy] Some additional signalling ideas
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Apr 2019 06:19:33 -0000
All, > Dear all, > Please rip these ideas to shreds: > 1) An extra bit in a response for "you could have asked over TLS" > 2) An extra field when looking up the nameserver for "you can ask that > server over TLS" > 3) An extra field/bit/convention for "this nameserver supports tls" > (like tls-ns vs ns) [AM] Another "probably bad idea", as mentioned in the WG session... 4) And EDNS0-option "Encryption available" sent from server to client, eventually including flags for which encrypted protocol is available? I have some experience in creating drafts for "funny" EDNS0-options (RFC7830), so I'd volunteer :-P Best, Alex
- [dns-privacy] Some additional signalling ideas Watson Ladd
- Re: [dns-privacy] Some additional signalling ideas Ralf Weber
- Re: [dns-privacy] Some additional signalling ideas Ilari Liusvaara
- Re: [dns-privacy] Some additional signalling ideas Watson Ladd
- Re: [dns-privacy] Some additional signalling ideas Paul Wouters
- Re: [dns-privacy] Some additional signalling ideas Alexander Mayrhofer
- Re: [dns-privacy] Some additional signalling ideas Stephen Farrell
- Re: [dns-privacy] Some additional signalling ideas Alexander Mayrhofer
- Re: [dns-privacy] Some additional signalling ideas Tony Finch
- Re: [dns-privacy] Some additional signalling ideas Peter van Dijk
- Re: [dns-privacy] Some additional signalling ideas Ilari Liusvaara
- Re: [dns-privacy] Some additional signalling ideas Ralf Weber