IETF Logo Mail Archive

Re: [DNSOP] Any website publishers who use CDNs on the list?

Tony Finch <dot@dotat.at> Wed, 07 November 2018 17:48 UTC

Return-Path: <dot@dotat.at>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D3B6D130DC8 for <dnsop@ietfa.amsl.com>; Wed, 7 Nov 2018 09:48:48 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZEUR2obdVlLT for <dnsop@ietfa.amsl.com>; Wed, 7 Nov 2018 09:48:47 -0800 (PST)
Received: from ppsw-31.csi.cam.ac.uk (ppsw-31.csi.cam.ac.uk [131.111.8.131]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C8D8912F1AC for <dnsop@ietf.org>; Wed, 7 Nov 2018 09:48:46 -0800 (PST)
X-Cam-AntiVirus: no malware found
X-Cam-ScannerInfo: http://help.uis.cam.ac.uk/email-scanner-virus
Received: from grey.csi.cam.ac.uk ([131.111.57.57]:33382) by ppsw-31.csi.cam.ac.uk (ppsw.cam.ac.uk [131.111.8.137]:25) with esmtps (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256) id 1gKRwa-000xJ8-MF (Exim 4.91) (return-path <dot@dotat.at>); Wed, 07 Nov 2018 17:48:44 +0000
Date: Wed, 07 Nov 2018 17:48:44 +0000
From: Tony Finch <dot@dotat.at>
To: Vladimír Čunát <vladimir.cunat+ietf@nic.cz>
cc: Matthew Pounsett <matt@conundrum.com>, dnsop <dnsop@ietf.org>
In-Reply-To: <ed4f4b57-ac02-a983-ae59-db5af9b78b96@nic.cz>
Message-ID: <alpine.DEB.2.20.1811071732040.4343@grey.csi.cam.ac.uk>
References: <CCEEBCEF-FE91-49A6-96FE-122A5E025159@isoc.org> <20181102121108.GE12840@besserwisser.org> <20181102211625.GB20885@besserwisser.org> <20181102214114.GA92689@isc.org> <5eb5e946-88e7-59f2-1a7d-1eec3e606b9b@nic.cz> <CAAiTEH8_K=h+A0PqTh785a0tNxWhDg_Uu1UDOWb0QTJyyO2eag@mail.gmail.com> <ed4f4b57-ac02-a983-ae59-db5af9b78b96@nic.cz>
User-Agent: Alpine 2.20 (DEB 67 2015-01-07)
MIME-Version: 1.0
Content-Type: multipart/mixed; BOUNDARY="1870870841-1423916191-1541612924=:4343"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/7H39R7Pd4bgaJblxuYCNkl6w5ac>
Subject: Re: [DNSOP] Any website publishers who use CDNs on the list?
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Nov 2018 17:48:49 -0000

Vladimír Čunát <vladimir.cunat+ietf@nic.cz> wrote:
> On 11/7/18 4:00 PM, Matthew Pounsett wrote:
> > Can you point to a major browser that does *not* implement its own
> > resolver already?
>
> I believe Firefox on Linux uses libc call (in my basically default
> setup).

There's a problem on Unix that there isn't a way to get the recursive
server IP addresses from the libc resolver. In the IPv4 era it was often
possible to dig around in the _res struct in a moderately portable way, if
the libc resolver was derived from BIND, but that was thoroughly broken by
the divergence in IPv6 support.

And even if you can get the recursive server addresses, you should still
go through the name service switch to deal with names that aren't in the
DNS.

The custom DNS stub resolvers that I know about (adns, ldns, libevent)
reimplement the libc resolver, with their own parsers for /etc/resolv.conf
and all the rest.

Tony.
-- 
f.anthony.n.finch  <dot@dotat.at>  http://dotat.at/
Shannon: South or southwest 5 to 7, increasing gale 8 at times. Very rough,
becoming high. Rain or thundery showers. Moderate or poor.

v2.23.0 | Report a Bug | By Email