[DNSOP] Re: [DNSOP]Re: [Ext] Requesting final comments on draft-ietf-dnsop-rfc8109bis

Joe Abley <jabley@strandkip.nl> Mon, 17 June 2024 16:19 UTC

Return-Path: <jabley@strandkip.nl>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BDD25C1840F5 for <dnsop@ietfa.amsl.com>; Mon, 17 Jun 2024 09:19:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.214
X-Spam-Level:
X-Spam-Status: No, score=-1.214 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, MIME_HTML_ONLY=0.1, MIME_HTML_ONLY_MULTI=0.001, MIME_QP_LONG_LINE=0.001, MPART_ALT_DIFF=0.79, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=strandkip.nl
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AXqe0ITIofS9 for <dnsop@ietfa.amsl.com>; Mon, 17 Jun 2024 09:19:14 -0700 (PDT)
Received: from st43p00im-ztdg10063201.me.com (st43p00im-ztdg10063201.me.com [17.58.63.182]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C73D1C1840E5 for <dnsop@ietf.org>; Mon, 17 Jun 2024 09:19:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=strandkip.nl; s=sig1; t=1718641154; bh=gia09x7ohbK0DI5Gbjt8EbmCgRiC+BGeRotMOyT3naI=; h=Content-Type:From:Mime-Version:Subject:Date:Message-Id:To; b=saKwJBrbyW96jmRTu2ZdJFt0uLtsROWMtTvy8++ZBwRKaXhabXccTYC5EVEmVH8fq hxppVs9TBBJv6E8JdX/jHuJgRIIb3b0EcNE6SbEYAwXcBq6R+DPk4FA0spdERHaR8s CE68eYn8pv6Cue+Mkpc4wRZUqzX+yLQhmd0D6w7jUttJdav0ASnmKeG6gE/O6IprQS pPX1oWq2seygMPn28xH3feiKb9lNoPLb8VsCWapFfj4w7BtLtJ5P2jPdSJx7C36M7S PcodCS3sjuBRfQV5c+271W88PK4G5ZOoE6b15gQt4ZbOCi/NttAtaPVeX/8bCko68p /Bd75H0bKDuAA==
Received: from smtpclient.apple (st43p00im-dlb-asmtp-mailmevip.me.com [17.42.251.41]) by st43p00im-ztdg10063201.me.com (Postfix) with ESMTPSA id 63A1C98049B; Mon, 17 Jun 2024 16:19:10 +0000 (UTC)
Content-Type: multipart/alternative; boundary="Apple-Mail-B8BE0414-35A9-4C8A-9368-79C26B39ACC4"
Content-Transfer-Encoding: 7bit
From: Joe Abley <jabley@strandkip.nl>
Mime-Version: 1.0 (1.0)
Date: Mon, 17 Jun 2024 18:18:55 +0200
Message-Id: <D3C5248E-39A9-4D23-A18D-F906E201B99A@strandkip.nl>
References: <CADyWQ+Hn260OEfcF8HEJ0jbfGOvL3GZnQN9=Bpod40TVxY8U_g@mail.gmail.com>
In-Reply-To: <CADyWQ+Hn260OEfcF8HEJ0jbfGOvL3GZnQN9=Bpod40TVxY8U_g@mail.gmail.com>
To: Tim Wicinski <tjw.ietf@gmail.com>
X-Mailer: iPhone Mail (21F90)
X-Proofpoint-GUID: DDBToznX2Ud9sB17ulklplBDPBkOmYth
X-Proofpoint-ORIG-GUID: DDBToznX2Ud9sB17ulklplBDPBkOmYth
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.272,Aquarius:18.0.1039,Hydra:6.0.680,FMLib:17.12.28.16 definitions=2024-06-17_14,2024-06-17_01,2024-05-17_01
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 mlxscore=0 suspectscore=0 malwarescore=0 adultscore=0 clxscore=1030 phishscore=0 bulkscore=0 mlxlogscore=440 spamscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.19.0-2308100000 definitions=main-2406170127
Message-ID-Hash: RKPKTWMVCCLUTAEB3FLYRUYS2AUNF5WX
X-Message-ID-Hash: RKPKTWMVCCLUTAEB3FLYRUYS2AUNF5WX
X-MailFrom: jabley@strandkip.nl
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dnsop.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Paul Hoffman <paul.hoffman@icann.org>, dnsop <dnsop@ietf.org>, dnsop-chairs <dnsop-chairs@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [DNSOP] Re: [DNSOP]Re: [Ext] Requesting final comments on draft-ietf-dnsop-rfc8109bis
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/8FMXhJE3pczTenzTx_7j7clks4I>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Owner: <mailto:dnsop-owner@ietf.org>
List-Post: <mailto:dnsop@ietf.org>
List-Subscribe: <mailto:dnsop-join@ietf.org>
List-Unsubscribe: <mailto:dnsop-leave@ietf.org>

On 17 Jun 2024, at 17:54, Tim Wicinski <tjw.ietf@gmail.com> wrote:

Oh that's a very good point, and does make that assumption.   "will be valuable if http://root-servers.net" rel="nofollow">root-servers.net is DNSSEC signed" does not make that assumption. 

It perhaps narrowly avoids one of the assumptions I mentioned but it still warmly embraces the other one. 

I still think this text speculates about the future and I still don't know why we think that is a good idea.


Joe