IETF Logo Mail Archive

Re: [dnsext] getting people to use new RRTYPEs

Doug Barton <dougb@dougbarton.us> Fri, 26 April 2013 18:01 UTC

Return-Path: <dougb@dougbarton.us>
X-Original-To: dnsext@ietfa.amsl.com
Delivered-To: dnsext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ABC5721F99E1 for <dnsext@ietfa.amsl.com>; Fri, 26 Apr 2013 11:01:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, NO_RELAYS=-0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mTsIV+5D+X6l for <dnsext@ietfa.amsl.com>; Fri, 26 Apr 2013 11:01:30 -0700 (PDT)
Received: from dougbarton.us (dougbarton.us [IPv6:2607:f2f8:ab14::2]) by ietfa.amsl.com (Postfix) with ESMTP id EE3BB21F99CA for <dnsext@ietf.org>; Fri, 26 Apr 2013 11:01:29 -0700 (PDT)
Received: from [IPv6:2001:470:d:5e7:bc8b:58b7:549d:818c] (unknown [IPv6:2001:470:d:5e7:bc8b:58b7:549d:818c]) by dougbarton.us (Postfix) with ESMTPSA id 7D4B322BA5 for <dnsext@ietf.org>; Fri, 26 Apr 2013 18:01:29 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=dougbarton.us; s=dougbarton.us; t=1366999289; bh=yoj6eHMJgkOh8yVXL/2lvy+nETEthz93kZ4d1urxLiY=; h=Date:From:To:Subject:References:In-Reply-To; b=e8gJNq2WzO5A88VN5l1i+SZtQE5F9C2WcDpuSusGVu7nBEKhfjnrI9VT325ZF8i3/ l8+qAWuS7PtGHAYxkE1xGNSaWxavCPn3ZcgzxYJH77obgE+fHIIZUmWjcoTNSHMRn5 HN0bIJXHIFJhE5Vl+Whm9KcyFDz9coLGNNe0LflU=
Message-ID: <517AC0F9.8040209@dougbarton.us>
Date: Fri, 26 Apr 2013 11:01:29 -0700
From: Doug Barton <dougb@dougbarton.us>
User-Agent: Mozilla/5.0 (X11; Linux i686 on x86_64; rv:17.0) Gecko/20130328 Thunderbird/17.0.5
MIME-Version: 1.0
To: dnsext@ietf.org
References: <alpine.BSF.2.00.1304251758160.66546@joyce.lan> <20130426004632.B5E1E32FAF70@drugs.dv.isc.org> <alpine.BSF.2.00.1304252131590.67465@joyce.lan> <5179DB4B.2040403@dougbarton.us> <20130426121424.GA349@mx1.yitter.info>
In-Reply-To: <20130426121424.GA349@mx1.yitter.info>
X-Enigmail-Version: 1.5.1
OpenPGP: id=1A1ABC84
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Subject: Re: [dnsext] getting people to use new RRTYPEs
X-BeenThere: dnsext@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsext>, <mailto:dnsext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsext>
List-Post: <mailto:dnsext@ietf.org>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 26 Apr 2013 18:01:30 -0000

On 04/26/2013 05:14 AM, Andrew Sullivan wrote:
> I am speaking here as an individual and as an operator.
>
> On Thu, Apr 25, 2013 at 06:41:31PM -0700, Doug Barton wrote:
>
>> 1. Insert the ability into the interface to add freeform stuff
>> 2. Run the equivalent of named-checkzone prior to committing the change
>> 3. Profit!
>
> That's preposterously naive.

Careful, that's dangerously close to ad hominem. :)

> Step 2.1 is "Find that customer who has
> no theory of the mystifying DNS arcana screwed it up, so you can't
> publish, and now you have to contact a human.

No, you don't. You write the documentation in advance about how the 
known type codes work, and when the thing fails you send them to a page 
that says, "I think you meant to do 'this' which should look like 
'that.' If that's not what you wanted, go 'here' which has a big list o' 
DNS records and their proper format."

Not to throw resumes around or anything, but I used to be in that 
business. I've written management platforms for DNS. When I left Yahoo! 
we had over 600,000 domains in our registrar-reseller business. My 
current business is enterprise DNS/DHCP/IPAM management solutions. Prior 
to that I was working for a company that does hosted solutions for mom 
and pop's all the way up to major e-commerce sites.

I'm not talking out of my ass here, I'm explaining that there is a real 
solution to this problem. The real issue (as you point out below) is 
that it isn't free, in either sense (speech or beer).

> Stop.  Invoke expensive
> off-page customer service process."  In some significant number of
> cases, we never get to step 3.  In the DNS business, the margins are
> small.

Thank you for confirming the real problem, which as I have pointed out 
in the past, is that the operators, especially hosting providers that 
cater to naive users, don't want to make ANY changes because it costs 
money on both the front and the back ends.

> This list -- and indeed, much of the IETF, as is often lamented -- is
> heavily populated by people who either are not operators or else are
> not consumer-facing operators, though there are notable exceptions.
> It sseems at least possible that this introduces a bias of ignoring
> problems that others report (or that are observable in deployment)
> because they're not the problems of the people who happen to be here.
>
> I have to agree with John Levine that the usual answer of the DNS
> community to provisioning problems -- in caricature, "This is easy,
> you must be morons."  -- is not helpful, and is indicative of a closed
> mindedness that is unbecoming.

I'm not close-minded, and I'm not naive. I'm also not willing to allow 
all progress on new DNS type codes to be held hostage to providers 
unwilling to invest in their own infrastructure.

Doug

v2.23.0 | Report a Bug | By Email