IETF Logo Mail Archive

Re: [DNSOP] Glue is not optional, but sometimes it *is* sufficient...

Shumon Huque <shuque@gmail.com> Fri, 22 May 2020 15:00 UTC

Return-Path: <shuque@gmail.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F389E3A0A01 for <dnsop@ietfa.amsl.com>; Fri, 22 May 2020 08:00:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tUQ8XFHsKJcb for <dnsop@ietfa.amsl.com>; Fri, 22 May 2020 08:00:17 -0700 (PDT)
Received: from mail-oi1-x234.google.com (mail-oi1-x234.google.com [IPv6:2607:f8b0:4864:20::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 40DDB3A0B11 for <dnsop@ietf.org>; Fri, 22 May 2020 08:00:16 -0700 (PDT)
Received: by mail-oi1-x234.google.com with SMTP id y85so9474541oie.11 for <dnsop@ietf.org>; Fri, 22 May 2020 08:00:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=nf0A6lM2uDrlpzuMrVKFHT91zL9E7peWbx+7j+SzUo4=; b=cXqssilDEV5ekb3dR8F9sylPE1IZ884sC0oRf+1mnYx/VxoKqAEzbwhXgcut5ZRxLX byu8e4HtsZOi4sCuKfNoQ+ByBuyImqAt7kpxMMMxUB+Hk+MvjQ3GSZf0fw4TZ24w9Xxf 4QBtiL/caE/32OTMKMB5t/0H/Yt2J8bJ7FRdSDxrpq/kUUV07NI5JR3hqEqh3Lg2qqkq f1q4jJ4hnWoRdik2H3mZo5SR3kshGWEFddkPZvnuYQKK6E2yfUvfvLOqz9ecoQm6SxG0 27rcITE0nqGRYoFbhW8eYR87ncCsksAjLthrOVcwKApSy7rxtYUi71plnC8oNHhtokYK yklg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=nf0A6lM2uDrlpzuMrVKFHT91zL9E7peWbx+7j+SzUo4=; b=oDpNtQSWUjPk9b+w6txqo7oI7n5+Bckl8VVnRLZQZKWrsbau7GLGe8GDz+JE9WDnb6 ynLWJO97R/MZb5Q1BwJHoFngUiZyoNOeb4vQMaXple18HtmP6FPI9AqITZjUAVJ8NVjP QJUPlYtvtjJovAV/nMtPsoudt4BGUkNWI9SzpCUFMK+PqXEwSwrNTIi+OliB1YqRAD9D 2pTxcUfktjQGGHc9FDgzF6QDPZ7Eqv8jzihk9UOC5BBRAlnFcc0qpVbJdB0U+tasDPTO eZeVZ6/MNdHuFa8VwyAVNxMCpu7np0e83QxQLSWQ0eMD1dGuyRTKAE2SjGM2kTvu2ZqM ieUA==
X-Gm-Message-State: AOAM532dcjTRip3pB52HPuRoUdzmJmrol09Xu6TiKeTiNIl7+H6zCavH ny9ksUk52ujEDklnuCRNYYrjCu/TrIFI4kIB4mM=
X-Google-Smtp-Source: ABdhPJxnjiWag1aUlSU7IYTJ82QSYmseBvG/CixkroeGIjceUPL7y3qEFI626dtSnZmXNRdYOoJBIl+lEaYh7Si4i9w=
X-Received: by 2002:aca:be41:: with SMTP id o62mr2891608oif.133.1590159614710; Fri, 22 May 2020 08:00:14 -0700 (PDT)
MIME-Version: 1.0
References: <CAHw9_i+UsV9NkuPM4KYBZhO7_J78MkUEyVR3fr=vOX-vsjJeUA@mail.gmail.com> <DDBED5AB-54D8-4936-8509-802472FA3B11@hopcount.ca>
In-Reply-To: <DDBED5AB-54D8-4936-8509-802472FA3B11@hopcount.ca>
From: Shumon Huque <shuque@gmail.com>
Date: Fri, 22 May 2020 11:00:02 -0400
Message-ID: <CAHPuVdWrT-Vzgngtbs0+uZbRBpw3Jv+hfgaf2gHY+_FmJP_nbA@mail.gmail.com>
To: Joe Abley <jabley@hopcount.ca>
Cc: Warren Kumari <warren@kumari.net>, dnsop <dnsop@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000f897f105a63de24a"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/1aCr4NQ-opBbyNZ_TJqLT60PQ7Y>
Subject: Re: [DNSOP] Glue is not optional, but sometimes it *is* sufficient...
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 May 2020 15:00:22 -0000

On Fri, May 22, 2020 at 10:52 AM Joe Abley <jabley@hopcount.ca> wrote:

> On 21 May 2020, at 16:07, Warren Kumari <warren@kumari.net> wrote:
>
> > What does all of this *mean*?
> > ..
> > ..
> > ..
> > Sorry, I haven't a clue, other than maybe:
> > The DNS is weird.
>
> In your experiment it seems clear that all the glue records you are
> looking for are being returned from the involved authority-only servers in
> the additional section, and since for the COM zone that's a
> well-constrained monoculture of software it seems reasonable to imagine
> that's not where to look.
>

Indeed. Since the COM referral response to glue queries is correct, this
means that some resolvers the Atlas probes are using are promoting glue to
answers.

Has anyone surveyed which of the following category of things are promoting
glue to answer: (1) other TLD authoritative services, (2) authoritative
server software implementations, (3) "public" (contentious term I know)
resolvers, and (4) resolver software implementations?

That would be an interesting but possibly very time consuming project - but
we could focus on the major ones.

Shumon.

v2.23.0 | Report a Bug | By Email