Re: [dnsext] draft-yao-dnsext-identical-resolution-02 comment

["Vaggelis Segredakis" <segred@ics.forth.gr>]

Dear Suzanne,

>The previous version of the document used your previous messages on
>Greek as an example of the "bundling" requirement, however I can't
>find any previous reference to specific problems you might have had
>with DNAME. Could you elaborate?

We have given the DNAME option to our registrants for less hassle in setting
up their DNS. Although it is OK if you just try to set
www.name1.gr=www.name2.gr, unfortunately you cannot use it to send
email@name1.gr and expect it to arrive to email@name2.gr because
name1.gr<>name2.gr. This way, our actual assistance to the registrant is
very limited and anyone choosing not to set up a zone for each name of the
bundle gets limited operation for the rest of the bundle names. 

As I explained before, since a user expects to type a domain name with tonos
or the same domain without the tonos and end up with the same result
(remember, in Greek words are spelled with tonos in small case letters but
without in Caps) the user experience is severely damaged when this is not
happening flawlessly, as expected if the domain was in Latin. We try to find
a solution to amend this issue and we came to the conclusion that a BNAME
sort of solution is necessary.

>However, it's also been strongly argued here that there's no way to
>support "aliases" in the DNS without application support, particularly
>without introducing inconsistencies in handling of certificates and
>other objects that rely on domain names. So the tension that needs to
>be explained in the next version of the document is between the need
>for providing this kind of "help" to applications, and the challenge
>of getting them to use it.

I can understand that a number of issues would need to be sorted before such
a solution could be used. However I believe that there is a need for it.
Furthermore, there is a logical gap between CNAME and DNAME if CNAME+DNAME
cannot co-exist and we do nothing to change this.

>The thing that worries me about this is that the registry can provide
>BNAMEs, but if applications don't make use of the "sameness"
>semantics, we haven't really gained anything....

I expect it could take some time for the applications to adapt to such a
solution but I keep reminding to myself that DNAME as well took some time to
be deployed although it was a useful add-on to the DNS.

>Whether there's a meeting of DNSEXT in Prague or not, the WG version
>of this draft will ship soon so we can continue the discussion.

This is very good to know :)

Best,

Vaggelis Segredakis