IETF Logo Mail Archive

Re: [DNSOP] Comments on draft-ietf-dnsop-qname-minimisation-00.txt

Edward Lewis <edlewis.subscriber@cox.net> Fri, 31 October 2014 14:58 UTC

Return-Path: <edlewis.subscriber@cox.net>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AD5B01A9074 for <dnsop@ietfa.amsl.com>; Fri, 31 Oct 2014 07:58:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.501
X-Spam-Level:
X-Spam-Status: No, score=-0.501 tagged_above=-999 required=5 tests=[BAYES_05=-0.5, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_FILL_THIS_FORM_SHORT=0.01, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FHIoHiprjuBk for <dnsop@ietfa.amsl.com>; Fri, 31 Oct 2014 07:58:37 -0700 (PDT)
Received: from eastrmfepo101.cox.net (eastrmfepo101.cox.net [68.230.241.213]) by ietfa.amsl.com (Postfix) with ESMTP id 9C6C11A9073 for <dnsop@ietf.org>; Fri, 31 Oct 2014 07:58:31 -0700 (PDT)
Received: from eastrmimpo306 ([68.230.241.238]) by eastrmfepo101.cox.net (InterMail vM.8.01.05.15 201-2260-151-145-20131218) with ESMTP id <20141031145831.KOAP12366.eastrmfepo101.cox.net@eastrmimpo306> for <dnsop@ietf.org>; Fri, 31 Oct 2014 10:58:31 -0400
Received: from [192.168.1.106] ([68.98.142.232]) by eastrmimpo306 with cox id 9qyV1p00D513AP001qyW4Z; Fri, 31 Oct 2014 10:58:31 -0400
X-CT-Class: Clean
X-CT-Score: 0.00
X-CT-RefID: str=0001.0A020205.5453A397.005A,ss=1,re=0.001,fgs=0
X-CT-Spam: 0
X-Authority-Analysis: v=2.0 cv=a//uAzuF c=1 sm=1 a=x3e9yDt9dqT69S6Zli6DPg==:17 a=N659UExz7-8A:10 a=kviXuzpPAAAA:8 a=A1X0JdhQAAAA:8 a=F3cBrYHxAAAA:8 a=qOdR0p5HePCit_hza2sA:9 a=pILNOxqGKmIA:10 a=4rq7TwIXcRUA:10 a=x3e9yDt9dqT69S6Zli6DPg==:117
X-CM-Score: 0.00
Authentication-Results: cox.net; auth=pass (PLAIN) smtp.auth=edlewis.subscriber@cox.net
Content-Type: text/plain; charset="windows-1252"
Mime-Version: 1.0 (Mac OS X Mail 7.3 \(1878.6\))
From: Edward Lewis <edlewis.subscriber@cox.net>
In-Reply-To: <20141031110804.GC15826@nic.fr>
Date: Fri, 31 Oct 2014 10:58:29 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <267FAFE7-9494-4AB7-A0A1-68AF1BBC56C7@cox.net>
References: <7E9FF8A6-FA02-4819-BB75-94730C0A4DDB@vpnc.org> <20141030100235.GA11342@nic.fr> <FF7875D1-A029-40FB-A4B9-BEC552EA8F6E@cox.net> <20141031110804.GC15826@nic.fr>
To: dnsop <dnsop@ietf.org>
X-Mailer: Apple Mail (2.1878.6)
Archived-At: http://mailarchive.ietf.org/arch/msg/dnsop/1U9tsLXCRKJKY24mYWKZb8MoASA
Cc: edlewis.subscriber@cox.net
Subject: Re: [DNSOP] Comments on draft-ietf-dnsop-qname-minimisation-00.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 31 Oct 2014 14:58:38 -0000

To clear up a few points.

On Oct 31, 2014, at 7:08, Stephane Bortzmeyer <bortzmeyer@nic.fr> wrote:

> On Thu, Oct 30, 2014 at 03:29:21PM -0400,
> Edward Lewis <edlewis.subscriber@cox.net> wrote 
> a message of 526 lines which said:
> 
>> This sounds like something related to work attempted in the DBound
>> mail list,
> 
> Doug Barton suggested here to use Dbound-like techniques to optimize
> the work of a qname-minimising resolver. I personally don't think this
> small improvment would be worth the added complication and risks of
> staleness.

I had in mind what Doug suggested.

> You say that not sending a SOA (when requested) is legal? 

A server may, at any time, return REFUSED.  If you want to argue based on the RFCs:

See RFC 1035, section 4.1.1. (Header section format), under RCODE, value 5

As far as not returning at all, that isn’t considered an option by the RFCs and protocol designers but is justified in my eyes under the reality of operations.

>>   292	##Appendix A.  An algorithm to find the zone cut
>> 
>> It's not the zone cut that matters, it's what zones the server
>> answers that matters.
> 
> I disagree. When you want to resolve www.example.com with Qname m12n,
> knowing that example.com and com are on different sides of a zone cut
> is necessary. Knowing that the .com name servers also serve .net is
> useless.

In this case the point was not made well.  What I mean is for a name like this:

www.localschool.K-12.city.county.province.ccTLD. : one name server might serve these zones:

localschool.K-12.city.county.province.ccTLD.
K-12.city.county.province.ccTLD.
county.province.ccTLD.

It’s not the zones that matter, but the set of zones on the server because if you ask this server the full name you will get to the result much faster than targeting the NS records of the zones.

The DNS does not convey the zones on a server - it does report the servers a zone is to be found on (although we know that it might be inaccurate).

v2.31.3 | Report a Bug | By Email | System Status