[DNSOP] draft-fujiwara-dnsop-dns-upper-limit-values
Kazunori Fujiwara <fujiwara@jprs.co.jp> Tue, 09 July 2024 10:06 UTC
Return-Path: <fujiwara@jprs.co.jp>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 807DDC1840FF for <dnsop@ietfa.amsl.com>; Tue, 9 Jul 2024 03:06:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=jprs.co.jp
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EguhMn8u4uQX for <dnsop@ietfa.amsl.com>; Tue, 9 Jul 2024 03:06:32 -0700 (PDT)
Received: from off-send41.tyo.jprs.co.jp (off-send41.tyo.jprs.co.jp [202.11.16.152]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C5792C1654F3 for <dnsop@ietf.org>; Tue, 9 Jul 2024 03:06:30 -0700 (PDT)
Received: from off-sendsmg31.osa.jprs.co.jp (off-sendsmg31.osa.jprs.co.jp [172.23.8.161]) by off-send41.tyo.jprs.co.jp (Postfix) with ESMTP id A79C84129CE for <dnsop@ietf.org>; Tue, 9 Jul 2024 19:06:28 +0900 (JST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jprs.co.jp; s=373623; t=1720519588; bh=h2EmeJzmbgD64gG2DqE0hLvtiyrhYEHAvaeckDzvzOE=; h=Date:To:Subject:From; b=QbI38R+7G0p9y6KXkEmQKmkd+q64Y5rn3GgeijuCgd3NiIfae8e6QyAFKG4Qfi2Aj 8Ele2+zqj5qUSluUdVukO48MqH/JGIe2GSbQNBLj+EKPD1YCyxJ+GsaKCutBBcNes3 hEbXR17/oHSJNwvisgjgoJfLTdPdpUpZCGhC9RqtlEqryTeTMgKAW82nxWpobrBjlu ohhf2ij4yitZTwU/w++n7z70YIy3kF6D3T1xOuKHABvXXOx3ArzXpTx02GOxGrXS+9 NJy8nEIOPJsH3njFpGENIeba1N+bhrDyFfTodoZok7a+5oT8WW1XwmekoMIOeGCzWz iXaOcZ7iOA7Pw==
Received: from off-sendsmg31.osa.jprs.co.jp (localhost [127.0.0.1]) by postfix.imss91 (Postfix) with ESMTP id CCC1F6025C44 for <dnsop@ietf.org>; Tue, 9 Jul 2024 19:06:27 +0900 (JST)
Received: from localhost (off-cpu08.osa.jprs.co.jp [172.23.4.18]) by off-sendsmg31.osa.jprs.co.jp (Postfix) with ESMTP id B7CF760254DA for <dnsop@ietf.org>; Tue, 9 Jul 2024 19:06:27 +0900 (JST)
Date: Tue, 09 Jul 2024 19:06:27 +0900
Message-Id: <20240709.190627.2171739541556622717.fujiwara@jprs.co.jp>
To: dnsop@ietf.org
From: Kazunori Fujiwara <fujiwara@jprs.co.jp>
X-Mailer: Mew version 6.8 on Emacs 24.5.1
Mime-Version: 1.0
Content-Type: Text/Plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-TM-AS-GCONF: 00
X-TM-AS-Product-Ver: IMSS-9.1.0.1373-9.0.0.1002-28518.007
X-TM-AS-Result: No--19.675-5.0-31-10
X-imss-scan-details: No--19.675-5.0-31-10
X-TMASE-Version: IMSS-9.1.0.1373-9.0.1002-28518.007
X-TMASE-Result: 10--19.674600-10.000000
X-TMASE-MatchedRID: LcpdM+dMDqRCXIGdsOwlUh5+URxv1WlB/czC/snTsNcadFN+Lxv9x7/E Sxz77lNOZIVYpde34shPklatje1aJshblrt58TvtMGAKZueP0mZok1IDwCG8yEOgo9xF1gRNdvj em4DbmwC1CxCMZhM6kdkCJuprk/7zAeu8T6gCRuiz8d6zvo5NkA60tXhQ0Rt4EdKdkW1iFCKW7e QGT57Co53Q8J0NqcD6d02he/pQmb7DCV91Kb00EZ4CIKY/Hg3AtOt1ofVlaoJ1wPk/GHGZA+gtt Zdy6vca0AUEY7W5hdZnPQAAZZiCoqDmii8RYWYpjoczmuoPCq2UTGVAhB5EbQ==
X-TMASE-SNAP-Result: 1.821001.0001-0-1-22:0,33:0,34:0-0
Message-ID-Hash: B62ISIH2TER6WPS7FQBZPBDVXISAVGRZ
X-Message-ID-Hash: B62ISIH2TER6WPS7FQBZPBDVXISAVGRZ
X-MailFrom: fujiwara@jprs.co.jp
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dnsop.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [DNSOP] draft-fujiwara-dnsop-dns-upper-limit-values
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/23cpC5BMPs518uW1CgP6z2bfAzc>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Owner: <mailto:dnsop-owner@ietf.org>
List-Post: <mailto:dnsop@ietf.org>
List-Subscribe: <mailto:dnsop-join@ietf.org>
List-Unsubscribe: <mailto:dnsop-leave@ietf.org>
Dear DNSOP, I submitted new draft that proposes to consider "Upper limit value for DNS". If you are interested, please read and comment it. I will attend IETF Hackathon. I would like to hear comments about the draft. Abstract: There are parameters in the DNS protocol that do not have clear upper limit values. If a protocol is implemented without considering the upper limit, it may become vulnerable to DoS attacks, and several attack methods have been proposed. This draft proposes reasonable upper limit values for DNS protocols. Name: draft-fujiwara-dnsop-dns-upper-limit-values Revision: 00 Title: Upper limit value for DNS Date: 2024-07-08 Group: Individual Submission Pages: 6 URL: https://www.ietf.org/archive/id/draft-fujiwara-dnsop-dns-upper-limit-values-00.txt Status: https://datatracker.ietf.org/doc/draft-fujiwara-dnsop-dns-upper-limit-values/ HTMLized: https://datatracker.ietf.org/doc/html/draft-fujiwara-dnsop-dns-upper-limit-values -- Kazunori Fujiwara, JPRS <fujiwara@jprs.co.jp>
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Joe Abley
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Mukund Sivaraman
- [DNSOP] draft-fujiwara-dnsop-dns-upper-limit-valu… Kazunori Fujiwara
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Yorgos Thessalonikefs
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Ray Bellis
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Ray Bellis
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Philip Homburg
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Yorgos Thessalonikefs
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Mukund Sivaraman
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Ben Schwartz
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Ben Schwartz
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Geoff Huston
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Kazunori Fujiwara
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Yorgos Thessalonikefs
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Philip Homburg
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Mukund Sivaraman
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Philip Homburg
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Philip Homburg
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Peter Thomassen
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Mukund Sivaraman
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Philip Homburg
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Dave Lawrence
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Ondřej Surý
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Jim Reid
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Philip Homburg
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… libor.peltan
- [DNSOP] Re: draft-fujiwara-dnsop-dns-upper-limit-… Mukund Sivaraman