[DNSOP] `localhost` and DNS.
Mike West <mkwst@google.com> Wed, 15 November 2017 14:51 UTC
Return-Path: <mkwst@google.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E51DD12751F for <dnsop@ietfa.amsl.com>; Wed, 15 Nov 2017 06:51:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.739
X-Spam-Level:
X-Spam-Status: No, score=-1.739 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, HTML_OBFUSCATE_05_10=0.26, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bDU6aK9Dyufn for <dnsop@ietfa.amsl.com>; Wed, 15 Nov 2017 06:51:40 -0800 (PST)
Received: from mail-qt0-x236.google.com (mail-qt0-x236.google.com [IPv6:2607:f8b0:400d:c0d::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C585F120713 for <dnsop@ietf.org>; Wed, 15 Nov 2017 06:51:39 -0800 (PST)
Received: by mail-qt0-x236.google.com with SMTP id f8so34862546qta.5 for <dnsop@ietf.org>; Wed, 15 Nov 2017 06:51:39 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=FZw4YFA/OEyEoqquqWDfR4UbTErRB7u81KtBFQ0bNMo=; b=Mo4VHPI0g3Ir//eZaxOA4kqO2Sti3BA/5VpaEAeEvb6H9qV3fsSrmS9yXOjSNnl4dA 4qr/0kswu8GhmfLQ3MoRYoqtYIRvrCf6zIMRb3nErzRIjJDZChnejdRWFpq+sd3ghKau +e7m7tMPigXs7Cv7PjQ16h4sIjZbaFqljzfPZZVbjA+2ZZn53YkQs2CJe6TjsJUPGlTN ZfQPXSLj5ymApHUXcs98vlgoY12e8I6HRgwLhnEhtk3azXgc+6haxEmSbqIAygBayX8c xFlRkdlQxn3S1JhG5T5UUlWBOdfSIT/ueyda7G3e/f/xM15/nTeqjGWp3dmcHeAdPIXW DX7g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=FZw4YFA/OEyEoqquqWDfR4UbTErRB7u81KtBFQ0bNMo=; b=o4lJSbA9ErPwjmicjqbySq57UTwegZr5+uReun+zEkMgcyaNCE3lK6sfS3MKWdsOQA ViojQcmUbk6dNd6zqs8w4NNS8ROpprPhXLzYqDsVijAZNkZux1weQ/7b9i9jtImE1UxX OC7usnX2TBNXKseUL0XLo9ugE4KRvLg6cKypsaY4x0ocgkFAgb/kll5IyHY3mRM2MEaS oQM1pRWY93qB16aZuj1F7AB7wThPVmSgL3/QOAkodK7hXZAw+rDP2NH6oYIg47Fw6yMj +rSnZTxaiTRgK/mBdzKuyJnLh9h4GwlT/md9vzc3sWg5LLn4Ap0Y1Ss5IzPmcpxMM0kf 7ESA==
X-Gm-Message-State: AJaThX4o1nIevLdf8QjxbmvfrENhyX+Kvq4zUlWND8jbrTaOzirrtd8y o0DFXq7niYBNK6tg9svthrbWHQBOm3QjK7ygzSau+Omecmg=
X-Google-Smtp-Source: AGs4zMbonQSnGAttf+jqP3SqEY53z95PoSNI+/jHhiA80uvnvT+QaK4qcIrFgtxYjKxUcDM55XYf8xfMundh8bwhus4=
X-Received: by 10.200.3.194 with SMTP id z2mr7275102qtg.309.1510757498331; Wed, 15 Nov 2017 06:51:38 -0800 (PST)
MIME-Version: 1.0
Received: by 10.200.6.210 with HTTP; Wed, 15 Nov 2017 06:51:17 -0800 (PST)
From: Mike West <mkwst@google.com>
Date: Wed, 15 Nov 2017 15:51:17 +0100
Message-ID: <CAKXHy=dgQmAgsTaNWpj3dYPN2nv7UnZLbe58A9vmya3JNdmHeQ@mail.gmail.com>
To: dnsop WG <dnsop@ietf.org>
Content-Type: multipart/alternative; boundary="f40304379228085c15055e06a4bc"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/A9rK2Scx9Kdof_A0Fsfpkg0ZbEs>
Subject: [DNSOP] `localhost` and DNS.
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Nov 2017 14:51:42 -0000
Hey folks! Skimming through the recording of Monday's meeting <https://play.conf.meetecho.com/Playout/?session=IETF100-DNSOP-20171113-0930> (starting at around 53:56), it sounds to me as though there's at least loose agreement that signing a response for `localhost` is not what we'd like to recommend: all the folks who commented explicitly took that position for similar reasons. The current text in https://tools.ietf.org/html/draft-ietf-dnsop-let-localhost-be-localhost-01#section-4.2 reflects this position, and IMO it's what we should run with. Are there contrary opinions that weren't expressed in the room on Monday? If not, is there additional work we need to do on the draft before moving on? I believe the remaining feedback that's been provided on the list has been addressed in the current -01. Also, one suggestion made at the mic is that `127.0.0.1` isn't the only loopback address (with the example of FreeBSD jails). I believe the current draft accepts that reality by allowing a range of loopback addresses in https://tools.ietf.org/html/draft-ietf-dnsop-let-localhost-be-localhost-01#section-2. Are there loopback addresses outside the 127.0.0.0/8 range? Thanks! -mike
- [DNSOP] `localhost` and DNS. Mike West
- Re: [DNSOP] `localhost` and DNS. Ted Lemon
- Re: [DNSOP] `localhost` and DNS. Richard Barnes
- Re: [DNSOP] `localhost` and DNS. Mike West
- Re: [DNSOP] `localhost` and DNS. Jacob Hoffman-Andrews