IETF Logo Mail Archive

Re: [DNSOP] Proposal: Whois over DNS

John Bambenek <jcb@bambenekconsulting.com> Wed, 10 July 2019 13:54 UTC

Return-Path: <jcb@bambenekconsulting.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8AC8612014F for <dnsop@ietfa.amsl.com>; Wed, 10 Jul 2019 06:54:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.298
X-Spam-Level:
X-Spam-Status: No, score=-4.298 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, MIME_QP_LONG_LINE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=bambenekconsulting.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FgB-eZLn1S7I for <dnsop@ietfa.amsl.com>; Wed, 10 Jul 2019 06:54:23 -0700 (PDT)
Received: from chicago.bambenekconsulting.com (chicago.bambenekconsulting.com [99.198.96.122]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7CC0B120140 for <dnsop@ietf.org>; Wed, 10 Jul 2019 06:54:23 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=bambenekconsulting.com; s=default; h=To:References:Message-Id: Content-Transfer-Encoding:Cc:Date:In-Reply-To:From:Subject:Mime-Version: Content-Type:Sender:Reply-To:Content-ID:Content-Description:Resent-Date: Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=77flK6exa5s7pqbMxIrjRE/kceX8geUxlzNbPDz8qfs=; b=moq6LTbRINJywC/RvT2xpSGOI +7K28DcTe5m8QWDlUTpzL46O4tpWtERnNd7t93NFwPP8CH5i0ONXybdtsBy3bfk2aJd/ZWw3g/LHX lU6SMO+gYGpo17a+kJMD4P6/hBNFEByZMPnO0sLzR9zMUxp286dPD9/YkCsO8+TKbiLpg=;
Received: from c-67-167-98-187.hsd1.il.comcast.net ([67.167.98.187]:56735 helo=[192.168.11.181]) by chicago.bambenekconsulting.com with esmtpsa (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256) (Exim 4.92) (envelope-from <jcb@bambenekconsulting.com>) id 1hlD36-0001K7-KZ; Wed, 10 Jul 2019 09:54:20 -0400
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (1.0)
From: John Bambenek <jcb@bambenekconsulting.com>
X-Mailer: iPhone Mail (16F203)
In-Reply-To: <m1hlCxh-0000KdC@stereo.hq.phicoh.net>
Date: Wed, 10 Jul 2019 08:54:18 -0500
Cc: dnsop@ietf.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <96CF641D-0C6F-4AF0-B7C7-2335090C79DC@bambenekconsulting.com>
References: <1CA7BF1B-DF50-443B-9219-55259835FE23@bambenekconsulting.com> <233E0AD8-97FE-466C-9B6C-D7A376031C3B@rfc1035.com> <93244821-6C22-457F-BA06-CF43CA9FD12B@bambenekconsulting.com> <EDE98437-E0B8-4B2E-8AA5-2F6B0079CE8B@hopcount.ca> <0ece2408-a1ec-fa5f-f8d1-ff65572de1ed@bambenekconsulting.com> <B520D17D-F258-41C3-97DD-3CE5C3A8E952@hopcount.ca> <6F0B44AA-902D-46E9-9E3B-DB88F5AC1419@isc.org> <A7A3C5BB-2705-47F2-9870-19552756423B@bambenekconsulting.com> <m1hlCac-0000FUC@stereo.hq.phicoh.net> <F7952048-F71F-4140-80B2-AC7CDE7EEF31@rfc1035.com> <m1hlCxh-0000KdC@stereo.hq.phicoh.net>
To: Philip Homburg <pch-dnsop-3@u-1.phicoh.com>
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - chicago.bambenekconsulting.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - bambenekconsulting.com
X-Get-Message-Sender-Via: chicago.bambenekconsulting.com: authenticated_id: jcb@bambenekconsulting.com
X-Authenticated-Sender: chicago.bambenekconsulting.com: jcb@bambenekconsulting.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/FEyJIh8ptd4T3068Kx2nBliEa6M>
Subject: Re: [DNSOP] Proposal: Whois over DNS
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 10 Jul 2019 13:54:26 -0000

Subdelegation/federation of whois (or rdap) servers could solve the problem. Whois still would remain effectively unstructured and unparseable but that’s the status quo. It would require entities to set up another public facing service. 

That’s an approach, I can’t say its wrong. My philosophy here was to design something using services people already run with functionality that already exists. Since SPF, DKIM, DMARC, CAA already live in DNS, it seemed appropriate to put this there too. 

My thoughts here were to keep it simple, use existing stuff, and have it all be voluntary disclosure and allow role-based info. That’s not the only approach. It just seemed logical to me to tackle it that way. 

—
John Bambenek

On July 1st, 2019, my DGA feeds are converting to a CC-BY-NC-SA 4.0 license which means commercial use will require a license. Contact sales@bambenekconsulting.com for details

On Jul 10, 2019, at 08:48, Philip Homburg <pch-dnsop-3@u-1.phicoh.com> wrote:

>>> As far as I know, there is no issue with whois and the GDRP when it comes
>>> to voluntarily publishing information in whois.
>> 
>> Nope. Its OK for you to publish your Personal Data. For anything
>> else, you need to get informed consent first. And be able to prove
>> that. And give the Data Subjects the ability to modify those data
>> or get them deleted.
> 
> When you register a domain, your registrar already has to have your informed
> consent to process any PII you supply. And as far as I know,
> registrars routinely ask for your name and credit card.
> 
> So all GDRP-related processes are already in place.
> 
> Looking at it from a technical point of view, whois has a referal mechanism.
> So if GDRP compliance would be a big issue, then allowing the handful of
> people who wish to publish anything in whois to run their own whois server
> would also solve the issue.
> 
> 
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop

v2.23.0 | Report a Bug | By Email