Re: [DNSOP] Call for Adoption: draft-song-atr-large-resp

["Peter van Dijk" <peter.van.dijk@powerdns.com>]

Hello,

On 18 Jan 2019, at 18:55, Benno Overeinder wrote:

> We discussed this work (draft -01) in Montreal, and different opinions wrt. adoption were expressed.  In the past months, the authors pushed a draft version -02 that addressed and resolved some of these comments.
>
> This starts a Call for Adoption for:
> draft-song-atr-large-resp
>
> The draft is available here:
> https://datatracker.ietf.org/doc/draft-song-atr-large-resp/
>
> Please review this draft to see if you think it is suitable for adoption by DNSOP, and comments to the list, clearly stating your view.
>
> Please also indicate if you are willing to contribute text, review, etc.  The WG accepts the document or not, but the WG chairs also expect a commitment from the WG participants who support the document to contribute to the draft, review, etc.
>
> The intended status of the draft is Experimental, but we want to ask developers/vendors if they plan to implement it.
>
> This call for adoption ends: 1 February 2019

I oppose adoption. Any implementation of this draft will actively hurt the DNS and the Internet, and thus publication as an RFC will actively hurt the DNS and the Internet.

The draft doubles the number of packets involved in a legitimate exchange; it more than doubles the number of packets involved in a spoofed exchange. About half of these packets are ICMP packets. Without the draft, ICMP packets are useful debugging aids, and in big numbers, indications of attacks or operational problems. With the draft, ICMP becomes another useless source of background noise.

Meanwhile, we have no indication that the draft solves any existing real world problem in a useful way.

Please do not adopt.

Kind regards,
-- 
Peter van Dijk
PowerDNS.COM BV - https://www.powerdns.com/