[DNSOP] Just for fun .. ChatGPT on DNSSEC

Shumon Huque <shuque@gmail.com> Thu, 27 July 2023 17:20 UTC

Return-Path: <shuque@gmail.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id DE3A8C152575 for <dnsop@ietfa.amsl.com>; Thu, 27 Jul 2023 10:20:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id bQHgd0z4VStS for <dnsop@ietfa.amsl.com>; Thu, 27 Jul 2023 10:20:21 -0700 (PDT)
Received: from mail-io1-xd35.google.com (mail-io1-xd35.google.com [IPv6:2607:f8b0:4864:20::d35]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 73704C152574 for <dnsop@ietf.org>; Thu, 27 Jul 2023 10:20:21 -0700 (PDT)
Received: by mail-io1-xd35.google.com with SMTP id ca18e2360f4ac-783698a37beso50043539f.0 for <dnsop@ietf.org>; Thu, 27 Jul 2023 10:20:21 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20221208; t=1690478420; x=1691083220; h=to:subject:message-id:date:from:mime-version:from:to:cc:subject :date:message-id:reply-to; bh=10EkZdSjMgtSKxO8wUThVjz06uGUOGQ4jChXtI3uxKc=; b=b5FTDLlqRUwVo8UxtrzsHVMizDrfAoCuczxVd0lmQAnRuA/qX/Vyh/iwlBPFRCL5X6 y9SRbkHKJiFuj0RaE2g/g+WUOWpL6YXOu/Y8ALyUS6I5HIKTvwaQ1jAerVtx2IQeBVVq O7hoHQrOp4Ql6cG+xyInvm56itAW1PChgY6qzlSsY3uGYRrUrI5LXIGUi3JssM7aq4gi NxuDl560OhlF4UnJKtrv0PYgISBgK6ccSIRwn9YgG+0G0JyDHlj9pAVbyKEt0uk3CbQU kifEhUJyviTJfb1QCdEpbEMhtJmcQ23Aa88/gBx/fwP4cutNGpvl0OrgfvZcn2tfhlUb 8gRw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1690478420; x=1691083220; h=to:subject:message-id:date:from:mime-version:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=10EkZdSjMgtSKxO8wUThVjz06uGUOGQ4jChXtI3uxKc=; b=KSKM+R+kIgSgKVPllbx6VRCcmAgTxA5s+OfrFomyDwCm22PYKk//dvBuXfYCjWQGfx OcfqOWMugzKA119+qSpN53e5zj3VUCPIy48mYc/AupjyZ3hmlcMEZArqcPMC4xMKVWXd rmGdT2QhKwN+4hpxrQytvoylzFZ5Ue1e58rsA8Yr7khW6Fox2fMVYe4d8P91J8TVtl8q QcN39AO6zfQrQfZ8CGF5vD5p4v02Y0244N0roW5Gy1FBLtwIDH9mK5NpZFP5BOTomp0g XGiVx6zpTt7UCg9fOKkQlAf5O7fK+IrA8CKtvWQOh5F+S5n9a/lbl5Ha0lXMO+nbR/Ds 0mSw==
X-Gm-Message-State: ABy/qLaKJFydFNDB9Ag6aDBRfzR+IWA27jHp7kOfbR7e52QNeQFT72M1 lTnFyOKmbQ0VryzGmSnSqqb/FAA42Xx2kqT/3ILQZSuTP64=
X-Google-Smtp-Source: APBJJlEXYnruro7Q9FXWVeazUhoQvcBK2x5fpPib1PAOjDYz5H4IE/hlRnsLFupTvq//ZmbVH22yCfEImlej2T5hu1A=
X-Received: by 2002:a5d:9550:0:b0:77e:3598:e511 with SMTP id a16-20020a5d9550000000b0077e3598e511mr180703ios.2.1690478420054; Thu, 27 Jul 2023 10:20:20 -0700 (PDT)
MIME-Version: 1.0
From: Shumon Huque <shuque@gmail.com>
Date: Thu, 27 Jul 2023 10:20:09 -0700
Message-ID: <CAHPuVdW6j0JGzGZe6d3RfWXd3qvPOur=R7ZhHFO-qW58ZYqnLw@mail.gmail.com>
To: "dnsop@ietf.org WG" <dnsop@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000ba564c06017b2da3"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/C90_5P5FJUq0bnnYWK2yKJKYLNA>
Subject: [DNSOP] Just for fun .. ChatGPT on DNSSEC
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 27 Jul 2023 17:20:22 -0000

(I know I need to respond to some of the earlier DNSOP threads on compact
DoE etc, but I'm already tired from IETF week, so am giving my brain a
short break ..)

I was wondering if George Michaelson's musings on re-using 15-bits of
QDCOUNT were also just for fun :)  But here's a post that is undeniably so

My colleague at Salesforce, Ian Varley, recently shared this interaction
with ChatGPT, and I wasn't sure who else but DNSOP could be amused by this,
so here it is ...

Prompt: Explain the basics of implementing DNSSEC in Shakespearean verse


To secure thy realm in this vast internet's space,
Thou must gird thy DNS with a stronger base.
Herein, I declare, a noble task awaits,
To implement DNSSEC and seal thy gates.

First, to generate keys for thy domain so fair,
Public and private, a cryptographic pair.
These keys are thy guards, steadfast and stout,
To sign thy DNS records, within and out.

Thy public key, in a record called DNSKEY,
Unveiled to the world. for all to see.
Its partner private, in secret must stay,
To sign thy records in a trustworthy way.

Now. to let the world know. thou are true and sincere
The DS record thou must place in the parent's sphere
In thy parent zone, this record gives voice,
To thy DNSSEC use, and affirms thy choice.

So secure thy domain, let no villain deface,
With DNSSEC strong, and with grace.
In this digital age, be not a wretch,
Secure thy DNS, let none breach thy stretch!