Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE
Noel David Torres Taño <envite@rolamasao.org> Sat, 27 April 2013 01:43 UTC
Return-Path: <envite@rolamasao.org>
X-Original-To: dnsext@ietfa.amsl.com
Delivered-To: dnsext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9DDE421F9904 for <dnsext@ietfa.amsl.com>; Fri, 26 Apr 2013 18:43:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 1.137
X-Spam-Level: *
X-Spam-Status: No, score=1.137 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FH_HOST_EQ_D_D_D_D=0.765, FH_HOST_EQ_D_D_D_DB=0.888, HELO_MISMATCH_ORG=0.611, HOST_EQ_STATIC=1.172, MIME_8BIT_HEADER=0.3]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ogx3jT4bQkY5 for <dnsext@ietfa.amsl.com>; Fri, 26 Apr 2013 18:43:51 -0700 (PDT)
Received: from rolamasao.org (68.167.216.87.static.jazztel.es [87.216.167.68]) by ietfa.amsl.com (Postfix) with ESMTP id 5C6CA21F990E for <dnsext@ietf.org>; Fri, 26 Apr 2013 18:43:49 -0700 (PDT)
Received: from tochox.localnet (localhost [IPv6:::1]) by rolamasao.org (Postfix_t) with ESMTPSA id EEB9B11EAB for <dnsext@ietf.org>; Sat, 27 Apr 2013 02:43:46 +0100 (WEST)
From: Noel David Torres Taño <envite@rolamasao.org>
To: dnsext@ietf.org
Date: Sat, 27 Apr 2013 02:43:40 +0100
User-Agent: KMail/1.13.7 (Linux/3.2.0-4-amd64; KDE/4.8.4; x86_64; ; )
References: <20130425013317.36729.qmail@joyce.lan> <517AD619.3000406@dougbarton.us> <CAL0qLwb_yF+LWAKv35Jadwb1_0c0rzAuE5K-eSB2cQdMTwb3gw@mail.gmail.com>
In-Reply-To: <CAL0qLwb_yF+LWAKv35Jadwb1_0c0rzAuE5K-eSB2cQdMTwb3gw@mail.gmail.com>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="nextPart1659035.xipCcTsHvt"; protocol="application/pgp-signature"; micalg="pgp-sha1"
Content-Transfer-Encoding: 7bit
Message-Id: <201304270243.41886.envite@rolamasao.org>
Subject: Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE
X-BeenThere: dnsext@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsext>, <mailto:dnsext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsext>
List-Post: <mailto:dnsext@ietf.org>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 27 Apr 2013 01:43:51 -0000
On Viernes, 26 de abril de 2013 22:58:59 Murray S. Kucherawy wrote: > On Fri, Apr 26, 2013 at 12:31 PM, Doug Barton <dougb@dougbarton.us> wrote: > > No, what I'm saying is that the way things were ten years ago > > > > As I (and others) have said many times, things were rough at the time SPF > > came to bloom. However, and this is really important to understand, it's > > not 10 years ago anymore. > > I am keenly aware of the date. What I am also keenly aware of, as I (and > others) have said many times, is that SPF set off in a specific direction > based on the situation ten years ago and has continued in that direction > all this time. Now, with the situation "at home" > largely-but-not-completely improved, there are a few people now exclaiming > that it went in the wrong direction, and that needs to be fixed. > > It's very easy to make that assertion when one ignores questions of > momentum and inertia. > I'm physicist, so I understand momentum and inertia quite well. I thus can assure you that even the minimal force can stop and revert even the fastest movement of the heaviest celestial body. It's just a matter of how much time you apply that force. Here, the momentum and inertia are the deployed base of TXT spf records. Most of them being v1, but the small force of spf 2 changed that movement and the body curved the trajectory from "use TXT v1" to "use TXT v1 and 2". Now, if we recommend SPF over TXT for spf (that's the minimal force) and give enought time, we'll see how TXT loses positions from almost unique to dominant, then to majority, then to coexistent, then to minority, then to historic, then to almost unused. It is just a matter of time, and if we start today better than tomorrow, well gain the same 1 day at the end of the process. Physics is so simple! Of course, greater forces like deprecating TXT too early can broke things, in the same way you can receive an egg with your hands (small force) but you'll break it if your receive it with a hockey stick. So I suggest we do the right thing, which is not deprecating TXT, but exerting the small force: recommending SPF over TXT, and increasing slowly the force of the recommendation through SPF 3, 4 and so on. Of course, it may be that we'll never reach SPF 4, but it can also be that an asteroid impacts us before IPv6 gets deployed completely, and we work towards that as well. > > I'm not being petty when I say that. It really is important to understand, > > > the time is going to pass anyway. In the time period between then and now > > a LOT of things have happened in the DNS world, and the situation is > > dramatically different now than it was. Better if is is not dramatical ;) > > Nobody's arguing that point. > > > What is even more important to understand is that 10 years from now 10 > > more years will have passed. We have a chance now to set in motion events > > that will continue to improve the situation, so that 10 years from now we > > can look back and laugh at the SPF TXT record, and have joy that things > > are so much better. Or, we can spend 10 more years with the same silly > > kludge, and not have made any progress at all. Either way, the next 10 > > years are going to pass. > > Sure. Is that a good use of engineering resources? This is where we > appear to differ. I claim, given current data, that it is not. Reality is addict to do bad use of resources. The amount of engineering used to clone Minix just to make it free was (with then-current data) a complete waste, but The Universe (whatever that means) converted that waste of engineering resources into modern linux. > > > And some of the software that handles SPF has already switched to > > querying SPF/99 first. There is no reason that the rest could not do > > that as well. > > I agree with the first sentence, but not the second. > > > As I have mentioned previously, in the DNS world we have a LOT of > > experience dealing with issues EXACTLY like this. We know how it works, > > we know what long tails look like, and we know that as problems go it's > > a pretty easy problem to deal with. > > This situation touches more than just DNS code. You appear to be convinced > that the path to overcoming inertia in the DNS world is the same, or maybe > even harder, than it is in other environments like email. I am not a > believer. I do not believe, I know. There is nothing that can not be moved. Moreover, there is nothing that can not be moved with the minimal force over its current friction limit. We just need to pass that limit. The friction, in this case, is those Windows and Providers unwilling to change. As the novel Momo teaches, they should be moved the last, once the remainder of the "society" is working the way you want. Do not try to "speak with Momo" too early. > > > Um, it's not "suddenly." The advice to do it right in the first place has > > been offered repeatedly, since the very beginning. That's why the code > > point was assigned in the first place. > > Um, it is "suddenly", or have you a copy of the spfbis archive that's > different from the one I have? > > > There is no doubt that in the early days, prior to the widespread > > deployment of 3597, querying for SPF/99 could cause problems. But we're > > not in that world anymore. Thank DNSSEC and IPv6 for shaking things > > loose. There is currently no TECHNICAL reason that the change cannot be > > made NOW to query SPF/99 first. The only argument you (and others) have > > put forward so far is, "We have been using TXT, it works, so we want to > > keep using it." I understand why that course of action is attractive, > > but it's bad. And the right thing isn't hard to do. > > I'm sorry, but that is not the only argument I (and others) have put > forward so far. If this conversation is going to be selective in that > manner, then I think I'm done here. > > -MSK Regards Noel Torres er Envite ------------------------- A: Because it breaks the logical flow of discussion. Q: Why is top posting bad?
- Re: [dnsext] Obsoleting SPF RRTYPE Masataka Ohta
- [dnsext] Obsoleting SPF RRTYPE S Moonesamy
- Re: [dnsext] Obsoleting SPF RRTYPE David Conrad
- Re: [dnsext] Obsoleting SPF RRTYPE Mark Andrews
- Re: [dnsext] Obsoleting SPF RRTYPE John Levine
- Re: [dnsext] Obsoleting SPF RRTYPE David Conrad
- Re: [dnsext] Obsoleting SPF RRTYPE Masataka Ohta
- Re: [dnsext] Obsoleting SPF RRTYPE John R Levine
- Re: [dnsext] Obsoleting SPF RRTYPE David Conrad
- Re: [dnsext] Obsoleting SPF RRTYPE Måns Nilsson
- Re: [dnsext] Obsoleting SPF RRTYPE and deprecate … Douglas Otis
- Re: [dnsext] Obsoleting SPF RRTYPE Andrew Sullivan
- Re: [dnsext] Obsoleting SPF RRTYPE Ted Lemon
- Re: [dnsext] Obsoleting SPF RRTYPE Andrew Sullivan
- Re: [dnsext] Obsoleting SPF RRTYPE Dave Lawrence
- Re: [dnsext] Obsoleting SPF RRTYPE Paul Hoffman
- Re: [dnsext] Obsoleting SPF RRTYPE Andrew Sullivan
- Re: [dnsext] Obsoleting SPF RRTYPE Patrik Fältström
- Re: [dnsext] Obsoleting SPF RRTYPE John R Levine
- Re: [dnsext] Obsoleting SPF RRTYPE Patrik Fältström
- Re: [dnsext] Obsoleting SPF RRTYPE John R Levine
- Re: [dnsext] Obsoleting SPF RRTYPE Måns Nilsson
- Re: [dnsext] Obsoleting SPF RRTYPE Ted Lemon
- Re: [dnsext] Obsoleting SPF RRTYPE John Levine
- Re: [dnsext] Obsoleting SPF RRTYPE Paul Hoffman
- Re: [dnsext] Obsoleting SPF RRTYPE Jim Reid
- Re: [dnsext] Obsoleting SPF RRTYPE Warren Kumari
- Re: [dnsext] Obsoleting SPF RRTYPE S Moonesamy
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Dotzero
- Re: [dnsext] Obsoleting SPF RRTYPE Joe Abley
- Re: [dnsext] Obsoleting SPF RRTYPE Joe Abley
- Re: [dnsext] Obsoleting SPF RRTYPE Doug Barton
- Re: [dnsext] Obsoleting SPF RRTYPE Warren Kumari
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Pete Resnick
- Re: [dnsext] Obsoleting SPF RRTYPE John R Levine
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Warren Kumari
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Warren Kumari
- Re: [dnsext] Obsoleting SPF RRTYPE David Conrad
- Re: [dnsext] Obsoleting SPF RRTYPE Ted Lemon
- Re: [dnsext] Obsoleting SPF RRTYPE Pete Resnick
- Re: [dnsext] Obsoleting SPF RRTYPE Ted Lemon
- Re: [dnsext] Obsoleting SPF RRTYPE Pete Resnick
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Patrik Fältström
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Patrik Fältström
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Doug Barton
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Murray S. Kucherawy
- Re: [dnsext] Obsoleting SPF RRTYPE John Levine
- Re: [dnsext] Obsoleting SPF RRTYPE John Levine
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Doug Barton
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Hector Santos
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Pete Resnick
- Re: [dnsext] Obsoleting SPF RRTYPE David Conrad
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Doug Barton
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Doug Barton
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE S Moonesamy
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Doug Barton
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Murray S. Kucherawy
- Re: [dnsext] Obsoleting SPF RRTYPE David Conrad
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE David Conrad
- Re: [dnsext] Obsoleting SPF RRTYPE Noel David Torres Taño
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Murray S. Kucherawy
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Mark Andrews
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE S Moonesamy
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Ted Lemon
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Ted Lemon
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Murray S. Kucherawy
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Nicholas Weaver
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Ted Lemon
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Nicholas Weaver
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Ted Lemon
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Barry Leiba
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Mark Andrews
- Re: [dnsext] Obsoleting SPF RRTYPE Havard Eidnes
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE S Moonesamy
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Hector Santos
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Patrik Fältström
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Ted Lemon
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Doug Barton
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Dave Crocker
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE David Conrad
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Dave Crocker
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Murray S. Kucherawy
- Re: [dnsext] Obsoleting SPF RRTYPE Mark Andrews
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Noel David Torres Taño
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Dave Crocker
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Hector Santos
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Scott Kitterman
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Scott Kitterman
- Re: [dnsext] [spfbis] Obsoleting SPF RRTYPE Hector Santos
- Re: [dnsext] Obsoleting SPF RRTYPE David Conrad
- Re: [dnsext] Obsoleting SPF RRTYPE John R Levine
- Re: [dnsext] Obsoleting SPF RRTYPE Doug Barton
- Re: [dnsext] Obsoleting SPF RRTYPE John Levine
- Re: [dnsext] Obsoleting SPF RRTYPE Doug Barton
- Re: [dnsext] Obsoleting SPF RRTYPE Edward Lewis
- [dnsext] loads of TXT records for fun and profit Jim Reid
- Re: [dnsext] Obsoleting SPF RRTYPE David Conrad
- Re: [dnsext] Obsoleting SPF RRTYPE Patrik Fältström
- Re: [dnsext] Obsoleting SPF RRTYPE Phillip Hallam-Baker
- Re: [dnsext] loads of TXT records for fun and pro… Phillip Hallam-Baker
- Re: [dnsext] loads of TXT records for fun and pro… Nicholas Weaver
- Re: [dnsext] loads of TXT records for fun and pro… Mark Andrews
- Re: [dnsext] loads of TXT records for fun and pro… Phillip Hallam-Baker
- Re: [dnsext] loads of TXT records for fun and pro… Ted Lemon
- Re: [dnsext] loads of TXT records for fun and pro… Phillip Hallam-Baker
- Re: [dnsext] loads of TXT records for fun and pro… Joe Abley
- Re: [dnsext] loads of TXT records for fun and pro… David Conrad
- Re: [dnsext] loads of TXT records for fun and pro… Phillip Hallam-Baker
- [dnsext] SPF, a cautionary tale John Levine
- Re: [dnsext] loads of TXT records for fun and pro… Nicholas Weaver
- Re: [dnsext] loads of TXT records for fun and pro… David Conrad
- Re: [dnsext] loads of TXT records for fun and pro… David Conrad
- Re: [dnsext] loads of TXT records for fun and pro… Doug Barton
- Re: [dnsext] loads of TXT records for fun and pro… Murray S. Kucherawy
- Re: [dnsext] loads of TXT records for fun and pro… Doug Barton
- Re: [dnsext] loads of TXT records for fun and pro… Phil Pennock
- Re: [dnsext] loads of TXT records for fun and pro… Phil Pennock
- Re: [dnsext] loads of TXT records for fun and pro… John Levine
- Re: [dnsext] loads of TXT records for fun and pro… David Miller
- Re: [dnsext] loads of TXT records for fun and pro… John Levine
- Re: [dnsext] SPF, a cautionary tale bmanning
- Re: [dnsext] SPF, a cautionary tale John R Levine
- Re: [dnsext] SPF, a cautionary tale Douglas Otis
- Re: [dnsext] SPF, a cautionary tale bmanning
- Re: [dnsext] SPF, a cautionary tale Douglas Otis
- Re: [dnsext] SPF, a cautionary tale bmanning
- Re: [dnsext] SPF, a cautionary tale Mark Andrews
- Re: [dnsext] SPF, a cautionary tale Murray S. Kucherawy
- Re: [dnsext] SPF, a cautionary tale Murray S. Kucherawy
- Re: [dnsext] SPF, a cautionary tale Mark Andrews
- Re: [dnsext] SPF, a cautionary tale Murray S. Kucherawy
- Re: [dnsext] SPF, a cautionary tale Doug Barton
- Re: [dnsext] SPF, a cautionary tale bmanning
- Re: [dnsext] SPF, a cautionary tale Murray S. Kucherawy
- Re: [dnsext] SPF, a cautionary tale Mark Andrews
- Re: [dnsext] SPF, a cautionary tale Phillip Hallam-Baker
- Re: [dnsext] SPF, a cautionary tale Mark Andrews
- Re: [dnsext] loads of TXT records for fun and pro… Florian Weimer