Re: [DNSOP] additional special names Fwd: I-D Action: draft-chapin-additional-reserved-tlds-00.txt

Warren Kumari <warren@kumari.net> Mon, 03 March 2014 14:19 UTC

Return-Path: <warren@kumari.net>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E14801A0005 for <dnsop@ietfa.amsl.com>; Mon, 3 Mar 2014 06:19:14 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.978
X-Spam-Level:
X-Spam-Status: No, score=-1.978 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ilJ8OcRveb9c for <dnsop@ietfa.amsl.com>; Mon, 3 Mar 2014 06:19:12 -0800 (PST)
Received: from mail-wg0-f43.google.com (mail-wg0-f43.google.com [74.125.82.43]) by ietfa.amsl.com (Postfix) with ESMTP id 6F1901A002B for <dnsop@ietf.org>; Mon, 3 Mar 2014 06:19:11 -0800 (PST)
Received: by mail-wg0-f43.google.com with SMTP id x13so2114385wgg.26 for <dnsop@ietf.org>; Mon, 03 Mar 2014 06:19:08 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=mFWr/31O5xrT55U+e49/QOy1WQlOOHFoBpS0Xt+8w9Y=; b=AqVkmLDJQrcuUfCh9OQp9Jh3r0cdDd1d64J0fiCQu27vXZyFlf05DWumjwoHNACjVZ ReO50UxrgzPEZms2m8y3fmsO6GvqY1kT4Mx/glu32eerJgz2zVO0fxuLUtwg+qpnh+Cy m87Tm21mTy0f9eSGzypU5UrWd6UD4PN5cUKMGCwH8i7hXRlhl3AZIEkXcnp81CsFx+Ge amabXW7EbmaMDRDouct+Yia62RgJV0es76nfyRoz3gCC/seXPMrEUGzRiFPG4g+Wct8J y6G/YTMHSB3Zbm5Mc6ItKd4Yaoobscy79DkCtlnZSY1nBv2IYQ2d+wMJMPfrVbdnfwmE GNNw==
X-Gm-Message-State: ALoCoQm14FwrqOhmgNtPVDqqZohn0aP7XJFxaKnC3wtX0wzYn4PiOi1V/YXyy/bArLWzbJcXKl3y
MIME-Version: 1.0
X-Received: by 10.194.174.197 with SMTP id bu5mr6236815wjc.71.1393856348139; Mon, 03 Mar 2014 06:19:08 -0800 (PST)
Received: by 10.194.54.167 with HTTP; Mon, 3 Mar 2014 06:19:07 -0800 (PST)
X-Originating-IP: [31.130.224.218]
In-Reply-To: <917146C3-BC38-4D10-AA14-C3B7A02B1193@hopcount.ca>
References: <20140129055438.2402.qmail@joyce.lan> <97E20887-2B9C-4EAD-826B-043306605F88@fl1ger.de> <54BE75D7-E70B-46AB-93C1-042E655BB5E7@apple.com> <D0AC0015-63C3-4C03-A8D0-888C435D2775@virtualized.org> <20140226100311.E73CA1069B39@rock.dv.isc.org> <8FEAF0FC-2AC3-4F39-9825-7068AAA6E40D@hopcount.ca> <CAHw9_iJa_OhzHVCQ4L0Aj+m=zAp6w=mJpAV-_ueh9iukhb3bnA@mail.gmail.com> <20140303102535.6f276963@quill> <531450A1.8010507@bogus.com> <917146C3-BC38-4D10-AA14-C3B7A02B1193@hopcount.ca>
Date: Mon, 3 Mar 2014 14:19:07 +0000
Message-ID: <CAHw9_iJ0Ymn0bUi3yZBLLtwVK_WOj_y13jNDiPj86ya5ZvUEng@mail.gmail.com>
From: Warren Kumari <warren@kumari.net>
To: Joe Abley <jabley@hopcount.ca>
Content-Type: text/plain; charset=ISO-8859-1
Archived-At: http://mailarchive.ietf.org/arch/msg/dnsop/5qBOPvldFet_fKYBWZD4uS32fAk
Cc: joel jaeggli <joelja@bogus.com>, Stuart Cheshire <cheshire@apple.com>, "dnsop@ietf.org WG" <dnsop@ietf.org>, David Conrad <drc@virtualized.org>, Norbert Bollow <nb@bollow.ch>
Subject: Re: [DNSOP] additional special names Fwd: I-D Action: draft-chapin-additional-reserved-tlds-00.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Mar 2014 14:19:15 -0000

On Mon, Mar 3, 2014 at 1:07 PM, Joe Abley <jabley@hopcount.ca>; wrote:
>
> On 3 Mar 2014, at 9:51, joel jaeggli <joelja@bogus.com>; wrote:
>
>> On 3/3/14, 9:25 AM, Norbert Bollow wrote:
>>> Warren makes a strong argument in favor of .alt I think.
>>
>> yeah... anything that has the potential to result in additional leakage
>> seems like a recipe for additional pain.
>
> Well, except that the current proposal is to reserve (not delegate) ALT.
>

Weeeeeelll....

Actually it says (Section 3):

 1.  Stub resolvers MAY elect not to send queries to any upstream
       resolver for names in the ALT TLD.

   2.  Iterative resolvers SHOULD follow the advice in [RFC6303],
       Section 3.

   3.  The root zone nameservers should either return NXDOMAIN
       responses, or the ALT TLD should be delegated to "new style"
       AS112 nameservers.  (TODO(WK): WK, JA, BD to revive AS112 /
       AS112-bis).

Item 3 is specifically about this question -- it can either be that
the root continues to not know about the ALT "TLD"[0] or it could be
delegated to a new style AS112, which will, in theory, happily sink
$whatever.

That's an open question, but (IMO) a detail.

W

[0]: Much of this draft and discussion is made complicated by
terminology problems. If someone uses www.foo.tld in their own
protocol, it the rightmost label a TLD? Probably not... But, if the
name (which is *not* a DNS name), but is "DNS like" leaks into the
DNS, then it is...


> If we assume that leaks will happen, then they will hit the root servers and there's no opportunity to sink the queries anywhere else.
>
> If we delegate ALT, then we have to decide where to. I can see this being contentious.
>
>
> Joe