IETF Logo Mail Archive

Re: [DNSOP] Alexey Melnikov's No Objection on draft-ietf-dnsop-refuse-any-07: (with COMMENT)

Ólafur Guðmundsson <olafur@cloudflare.com> Wed, 12 September 2018 21:33 UTC

Return-Path: <olafur@cloudflare.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 515D3130EC8 for <dnsop@ietfa.amsl.com>; Wed, 12 Sep 2018 14:33:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.031
X-Spam-Level:
X-Spam-Status: No, score=-1.031 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FROM_EXCESS_BASE64=0.979, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cloudflare.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hUU5bg8wxb1G for <dnsop@ietfa.amsl.com>; Wed, 12 Sep 2018 14:33:25 -0700 (PDT)
Received: from mail-wm0-x22b.google.com (mail-wm0-x22b.google.com [IPv6:2a00:1450:400c:c09::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 08D69130ECD for <dnsop@ietf.org>; Wed, 12 Sep 2018 14:33:21 -0700 (PDT)
Received: by mail-wm0-x22b.google.com with SMTP id s12-v6so3949647wmc.0 for <dnsop@ietf.org>; Wed, 12 Sep 2018 14:33:21 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cloudflare.com; s=google; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=RNC04zzWIbJja2DhZXBZvIDtbxs4NMcxh5vQDhwOEX4=; b=GybZ7qYJDc5xZby2NlG9tEcpFKIscAt1bc3skuiLlPJ0TctdOwIEm9YKUDx7rtfvmy VB3IfYHMLZPQ84vzD9Wzsrl3HGs88Vh98DCPW1HwQ2HbpaMuxGe8h8BSSJhPzXLnkEII GZo2E7WPJG9fq5vykrA/e1afn4S+76C0ZE35A=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=RNC04zzWIbJja2DhZXBZvIDtbxs4NMcxh5vQDhwOEX4=; b=aS4yV+d56fKuCGQWCy4uQOIbeahjcFfwTJ7IhNVTKslQ+Nb9vJHnaEFnEYSP3y4GsU 5OCNG7te4nzq+UKlzWR53vdHJChxONsH6BOUFVcOSxLKsw0oggSogk0jwBw3fkfw5G23 UJxeJZeHNceQZIkkI9CYG2Qhcg1b9K2RPYnIeQMVUzoa2NyzI1Fx+g2JDE0mTMF8597l hFCtQw0FGTGyYSDPyd1fqgT/W5DtoHUXnzg16+u+69gaX2fL/bEc+ec4xEBm6wNGP93V JuEbBOtYie3QYPO48tpStzfRchGiQpvWiRzyFGg9bWnnHqXbG+BWEYKShUsAOQN1dyQQ P/eg==
X-Gm-Message-State: APzg51A8eCJAoYhaPsVrd9wBm+SF9SE+LJMAnULbi9HIByxQ73IspC6N /QYr3cp4P7Uh3P3LulTu9vdAjHGIq2KZSLiRdobPaw==
X-Google-Smtp-Source: ANB0VdZNjdIqm/4WTaiYn4Wu6yas7RcRvXWL8Ua1MRDu552nbkagLReLqDrVWuAm6ZqeW1Y4/mlcpQrh666ZM8GAq1E=
X-Received: by 2002:a1c:dd05:: with SMTP id u5-v6mr2973778wmg.107.1536788000216; Wed, 12 Sep 2018 14:33:20 -0700 (PDT)
MIME-Version: 1.0
Received: by 2002:adf:e451:0:0:0:0:0 with HTTP; Wed, 12 Sep 2018 14:33:19 -0700 (PDT)
In-Reply-To: <153676778566.9367.13972001607431664064.idtracker@ietfa.amsl.com>
References: <153676778566.9367.13972001607431664064.idtracker@ietfa.amsl.com>
From: Ólafur Guðmundsson <olafur@cloudflare.com>
Date: Thu, 13 Sep 2018 08:33:19 +1100
Message-ID: <CAN6NTqzoRMfmznA3poZ2CToy0jQFRaX095GNyJiYTJqyNtmGuw@mail.gmail.com>
To: Alexey Melnikov <aamelnikov@fastmail.fm>
Cc: The IESG <iesg@ietf.org>, draft-ietf-dnsop-refuse-any@ietf.org, Tim Wicinski <tjw.ietf@gmail.com>, dnsop-chairs <dnsop-chairs@ietf.org>, dnsop <dnsop@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000d93e450575b3568e"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/7KhOn46OBhJBv-daw4CTBGKC44g>
Subject: Re: [DNSOP] Alexey Melnikov's No Objection on draft-ietf-dnsop-refuse-any-07: (with COMMENT)
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 12 Sep 2018 21:33:28 -0000

On Thu, Sep 13, 2018 at 2:56 AM, Alexey Melnikov <aamelnikov@fastmail.fm>
wrote:

> Alexey Melnikov has entered the following ballot position for
> draft-ietf-dnsop-refuse-any-07: No Objection
>
> When responding, please keep the subject line intact and reply to all
> email addresses included in the To and CC lines. (Feel free to cut this
> introductory paragraph, however.)
>
>
> Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
> for more information about IESG DISCUSS and COMMENT positions.
>
>
> The document, along with other ballot positions, can be found here:
> https://datatracker.ietf.org/doc/draft-ietf-dnsop-refuse-any/
>
>
>
> ----------------------------------------------------------------------
> COMMENT:
> ----------------------------------------------------------------------
>
> I generally like this document, but I find it to be too wishy washy
> because of
> use of SHOULDs instead of MUSTs. I would have liked a bit more guidance
> early
> on about different choices or at least a statement that this is a rarely
> used
> feature and thus any choice is reasonably good.
>
> Alexey
you have summarized correctly the translation from the earliest version of
the document to something the WG could agree on.
The choices are dictated by capabilities and implementation approaches,
 i.e. HINFO response can be used for all unsigned zones and DNSSEC signed
zones if the server does online-signing,
the "one RRset" response can be used for all zones but is hard for servers
that fetch RRsets from DB.

-- 
Ólafur Gudmundsson | Engineering Director
www.cloudflare.com blog.cloudflare.com

v2.23.0 | Report a Bug | By Email