IETF Logo Mail Archive

DNS vs. non-DNS Data (was Re: Signature at parent (draft-ietf-dnsop-parent-sig-00.txt))

Kevin Darcy <kcd@daimlerchrysler.com> Fri, 06 April 2001 21:25 UTC

Received: from psg.com (exim@[147.28.0.62]) by ietf.org (8.9.1a/8.9.1a) with SMTP id RAA20788 for <dnsext-archive@lists.ietf.org>; Fri, 6 Apr 2001 17:25:39 -0400 (EDT)
Received: from lserv by psg.com with local (Exim 3.16 #1) id 14ldOs-000HiY-00 for namedroppers-data@psg.com; Fri, 06 Apr 2001 14:04:10 -0700
Received: from [216.168.245.55] (helo=h236.s254.netsol.com) by psg.com with esmtp (Exim 3.16 #1) id 14ldOn-000Hhv-00 for namedroppers@ops.ietf.org; Fri, 06 Apr 2001 14:04:09 -0700
Received: (from markk@localhost) by h236.s254.netsol.com (8.11.0/8.11.0) id f36L3VS01539 for namedroppers@ops.ietf.org; Fri, 6 Apr 2001 17:03:31 -0400
Received: from fxodpr10.extra.daimlerchrysler.com ([204.189.94.74] helo=fxodpr10.is.chrysler.com ident=firewall-user) by psg.com with esmtp (Exim 3.16 #1) id 14lccM-000FYC-00 for namedroppers@ops.ietf.org; Fri, 06 Apr 2001 13:14:02 -0700
Received: (from uucp@localhost) by fxodpr10.is.chrysler.com (8.9.0/8.9.0) id QAA14853 for <namedroppers@ops.ietf.org>; Fri, 6 Apr 2001 16:10:30 -0400 (EDT)
Received: from nodnsquery(129.9.202.19) by fwodpr10.is.chrysler.com via smap (V5.5) id xma014812; Fri, 6 Apr 01 16:10:26 -0400
Received: from daimlerchrysler.com (clkcdts1.is.chrysler.com [129.9.209.47]) by odmrspr1-pf0.oddc.chrysler.com (8.11.2/8.11.2/daimlerchrysler-relay-1.1-kcd) with ESMTP id f36KDo621051 for <namedroppers@ops.ietf.org>; Fri, 6 Apr 2001 16:13:50 -0400 (EDT)
Message-ID: <3ACE2367.32018AA0@daimlerchrysler.com>
Date: Fri, 06 Apr 2001 16:13:27 -0400
From: Kevin Darcy <kcd@daimlerchrysler.com>
X-Mailer: Mozilla 4.04 [en] (X11; I; SunOS 5.8 sun4u)
MIME-Version: 1.0
To: namedroppers@ops.ietf.org
Subject: DNS vs. non-DNS Data (was Re: Signature at parent (draft-ietf-dnsop-parent-sig-00.txt))
References: <20010405154908.A92004@open.nlnetlabs.nl> <200104060317.UAA13324@toad.com> <E14lVXT-000Hev-00@rip.psg.com>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: owner-namedroppers@ops.ietf.org
Precedence: bulk
Content-Transfer-Encoding: 7bit

Randy Bush wrote:

> in general, we discourage storing non-dns data in the dns.

What is the definition of "DNS data", actually? In a strict definition, even
MX records and PTRs are "non-DNS data", i.e. they are not necessary to hold
the DNS infrastructure together. By such a strict definition, all of
DNSSEC is "non-DNS data". Does that mean it should be deprecated?

Or, is "DNS data" to be defined loosely as "whatever one can legally store
in the DNS"? In that case, the principle enunciated by Randy above is
totally circular.

A reasonable definition should lay somewhere between those two extremes. It
should delineate *why* it is acceptable to e.g. store in DNS data about how
an SMTP client should deliver a piece of email, whereas it is, _arguendo_,
*not* acceptable to store in DNS data about how an IPSec client should
encrypt and/or sign/verify packets.

I wish someone would clarify this, so that whenever a new record type is
shot down because it supposedly puts "non-DNS data" into the DNS, or a new
use for an existing record type -- like storing IPSec keys in DNS -- is shot
down for essentially the same reason, it doesn't look so much like a
capricious exercise of power.


- Kevin





to unsubscribe send a message to namedroppers-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.

v2.23.0 | Report a Bug | By Email