Re: [DNSOP] [DNSSEC-Bootstrapping] Fwd: New Version Notification for draft-thomassen-dnsop-dnssec-bootstrapping-02.txt
Peter Thomassen <peter@desec.io> Wed, 27 April 2022 15:43 UTC
Return-Path: <peter@desec.io>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 48B33C1594A5 for <dnsop@ietfa.amsl.com>; Wed, 27 Apr 2022 08:43:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.755
X-Spam-Level:
X-Spam-Status: No, score=-3.755 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, NICE_REPLY_A=-1.857, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=a4a.de
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oNWXWnYGwKo6 for <dnsop@ietfa.amsl.com>; Wed, 27 Apr 2022 08:43:34 -0700 (PDT)
Received: from mail.a4a.de (mail.a4a.de [IPv6:2a01:4f8:10a:1d5c:8000::8]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 374D9C15ED73 for <dnsop@ietf.org>; Wed, 27 Apr 2022 08:43:06 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=a4a.de; s=20170825; h=Content-Transfer-Encoding:Content-Type:In-Reply-To:From: References:To:Subject:MIME-Version:Date:Message-ID:Sender:Reply-To:Cc: Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender: Resent-To:Resent-Cc:Resent-Message-ID:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=LCnqqBYW3Yutk+Qcj1h37n3xAw7u728wIC0Hz39A/lc=; b=tCvRgUhxFns1weEJSLfK4U9Dfa uWwIOoZ6zUJguHA2o2mNv/niuupSrpcpwBKg59c726ip6Eg5Kb/N6meF3RkQm2GyIWRg35noc1WqW GQnT7AWuECOfY9D5YVaQV+nNdBffvhtzpBx8cR8iOYmKaJb8sv91kSv21tgRQiSM77bz8A9NssLCp 6wXm3O+V1S046MMe3zT7s7vuNfncU12+ZVXW5fh/cEzWewscwa74SW8G26EXYJkpbknZs8sBH8oxQ 5V/FUAQBmw+jai5aT6f5/Ybw1z9B/ypPGEnmMMig1q0jjAHGQ86NfcNF8jw1HHUZpFnY8T6APITPM ooqdQD8Q==;
Received: from [132.170.253.24] (helo=[10.37.31.190]) by mail.a4a.de with esmtpsa (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from <peter@desec.io>) id 1njjol-0003p5-G5 for dnsop@ietf.org; Wed, 27 Apr 2022 17:43:03 +0200
Message-ID: <c3011582-080a-c635-8f05-360c76b52758@desec.io>
Date: Wed, 27 Apr 2022 17:42:59 +0200
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.8.0
Content-Language: en-US
To: dnsop@ietf.org
References: <163520620129.17275.16274772439094875607@ietfa.amsl.com> <91154628-0ca3-15d8-c6bd-b71232b2e64b@desec.io> <8d3b2ae-70e3-74b4-40a0-70e848acc4aa@nohats.ca> <66e2a81b-b971-cdea-0f40-cfed68be574f@desec.io> <705c1434-532-6840-8ae4-545bde91822@nohats.ca> <37fa7324-643a-9c3c-4256-97abe52f1118@desec.io> <2c8d972a-1388-2f42-994-56a58fe03916@nohats.ca> <26f99653-0b88-1226-fa7d-6ce6267c9eea@desec.io> <608f2d3d-6e63-7e33-2c52-bd78aa4e9f39@nohats.ca> <805e32ca-aa4f-4550-adc9-2913b81becde@desec.io> <CA+nkc8AcD54StByFVc2AzKT2_mX-RoYGECZ3-FXQN37eNtnV_Q@mail.gmail.com>
From: Peter Thomassen <peter@desec.io>
In-Reply-To: <CA+nkc8AcD54StByFVc2AzKT2_mX-RoYGECZ3-FXQN37eNtnV_Q@mail.gmail.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/715UBTdpw7353nvVJRNhnR2odmc>
Subject: Re: [DNSOP] [DNSSEC-Bootstrapping] Fwd: New Version Notification for draft-thomassen-dnsop-dnssec-bootstrapping-02.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 27 Apr 2022 15:43:39 -0000
On 4/27/22 15:11, Bob Harold wrote: > To avoid (C)DS at an apex under the _boot tree, one could use another _name like: > _nsboot.dedyn.io._boot.ns1.desec.io <http://boot.ns1.desec.io>. CDS ... > > So the CDS records in this new scheme are never at an apex, but one level down under a new "_nsboot" label. > It adds another label, but avoids any ambiguity. Interesting proposal! When named like _dsauth.example.com._signal.ns1.desec.io or similarly, this would suggest that other things could be signaled as well. Perhaps this could be useful in other cases. Best, Peter -- https://desec.io/
- [DNSOP] Fwd: New Version Notification for draft-t… Peter Thomassen
- Re: [DNSOP] Fwd: New Version Notification for dra… Paul Wouters
- Re: [DNSOP] Fwd: New Version Notification for dra… John Levine
- Re: [DNSOP] Fwd: New Version Notification for dra… Peter Thomassen
- Re: [DNSOP] Fwd: New Version Notification for dra… Paul Wouters
- Re: [DNSOP] [DNSSEC-Bootstrapping] Fwd: New Versi… Peter Thomassen
- Re: [DNSOP] [DNSSEC-Bootstrapping] Fwd: New Versi… Nils Wisiol
- Re: [DNSOP] [DNSSEC-Bootstrapping] Fwd: New Versi… Paul Wouters
- Re: [DNSOP] [DNSSEC-Bootstrapping] Fwd: New Versi… Peter Thomassen
- Re: [DNSOP] [DNSSEC-Bootstrapping] Fwd: New Versi… Paul Wouters
- Re: [DNSOP] [DNSSEC-Bootstrapping] Fwd: New Versi… Christian Elmerot
- Re: [DNSOP] Fwd: New Version Notification for dra… Peter Thomassen
- Re: [DNSOP] [DNSSEC-Bootstrapping] Fwd: New Versi… Peter Thomassen
- Re: [DNSOP] [DNSSEC-Bootstrapping] Fwd: New Versi… Bob Harold
- Re: [DNSOP] [DNSSEC-Bootstrapping] Fwd: New Versi… Peter Thomassen