Re: [DNSOP] IETF 102 Hackathon: prototype implementation of draft-wessels-dns-zone-digest-02

"Peter van Dijk" <peter.van.dijk@powerdns.com> Sat, 21 July 2018 22:12 UTC

Return-Path: <peter.van.dijk@powerdns.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 70BE6130DC6 for <dnsop@ietfa.amsl.com>; Sat, 21 Jul 2018 15:12:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PsP-r9634muL for <dnsop@ietfa.amsl.com>; Sat, 21 Jul 2018 15:12:15 -0700 (PDT)
Received: from mx4.open-xchange.com (alcatraz.open-xchange.com [87.191.39.187]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6ECAA130DC9 for <dnsop@ietf.org>; Sat, 21 Jul 2018 15:12:15 -0700 (PDT)
Received: from open-xchange.com (imap.open-xchange.com [10.20.30.10]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx4.open-xchange.com (Postfix) with ESMTPS id 5FD906A24A; Sun, 22 Jul 2018 00:12:13 +0200 (CEST)
Received: from [192.168.3.2] (095-096-086-198.static.chello.nl [95.96.86.198]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by open-xchange.com (Postfix) with ESMTPSA id 2F96A3C0373; Sun, 22 Jul 2018 00:12:13 +0200 (CEST)
From: "Peter van Dijk" <peter.van.dijk@powerdns.com>
To: dnsop@ietf.org
Date: Sun, 22 Jul 2018 00:12:12 +0200
X-Mailer: MailMate (1.11.3r5509)
Message-ID: <B6A52190-7BD6-4EE7-89E4-B827501620D2@powerdns.com>
In-Reply-To: <c8c2b792-3a1c-0252-ba86-6cca10be7680@time-travellers.org>
References: <3e5675e4-3ae0-f21c-7e3a-e9214953888e@time-travellers.org> <E92190FF-6520-428C-B5D6-37E8175D1EE9@verisign.com> <c8c2b792-3a1c-0252-ba86-6cca10be7680@time-travellers.org>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=_MailMate_F4ED56BE-D71D-4F9B-9B00-407D22423602_="; micalg=pgp-sha1; protocol="application/pgp-signature"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/4nS7JP7wgawpevKPD76lPTXF-J4>
Subject: Re: [DNSOP] IETF 102 Hackathon: prototype implementation of draft-wessels-dns-zone-digest-02
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 21 Jul 2018 22:12:18 -0000

Hello,

On 19 Jul 2018, at 16:26, Shane Kerr wrote:

> Someone pointed out to me that since ZONEMD is meta-data we don't really expect it to be queried normally, and a TTL of 0 is a reasonable default.

I recall a story about some resolver (Google Public DNS perhaps?) applying the lowest TTL per name, instead of per RRset. This, if true, would argue against 0.

Kind regards,
-- 
Peter van Dijk
PowerDNS.COM BV - https://www.powerdns.com/