IETF Logo Mail Archive

Re: [DNSOP] I-D Action: draft-vixie-dns-rpz-04.txt

David Conrad <drc@virtualized.org> Wed, 04 January 2017 06:27 UTC

Return-Path: <drc@virtualized.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 62774129B92 for <dnsop@ietfa.amsl.com>; Tue, 3 Jan 2017 22:27:42 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=virtualized-org.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id E5IXHz52SjkX for <dnsop@ietfa.amsl.com>; Tue, 3 Jan 2017 22:27:41 -0800 (PST)
Received: from mail-pg0-x233.google.com (mail-pg0-x233.google.com [IPv6:2607:f8b0:400e:c05::233]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F11BB129483 for <dnsop@ietf.org>; Tue, 3 Jan 2017 22:27:40 -0800 (PST)
Received: by mail-pg0-x233.google.com with SMTP id i5so158848930pgh.2 for <dnsop@ietf.org>; Tue, 03 Jan 2017 22:27:40 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=virtualized-org.20150623.gappssmtp.com; s=20150623; h=subject:mime-version:from:in-reply-to:date:cc:message-id:references :to; bh=tpWtCpIWQbbLuUmEj5+/M41giVUPrFxYZSDQ4bgWxX0=; b=twcMef0fxtRsyYQhOnOyWdz0/TdDId5kiLOQikcAdAoKokEUx/FTFvZjZZFbBXYDmF /6uaPE7IlSKcsfqvHA8iCIxXa2Xh3onwCIRVGoYKrWGP1UIgCzv0Hq6ukdtbWL+//BxF i0zLjLdFW0UPUGGL4Q1HB2Xw0optMKa83ejKqTfBj6+seYvFxKOj0lQ6+0dQALfyxVvi plGPYoU7BR8AJCyHECEr1iz8vipMc5owpqvRFumnOyqV05EEmzpwC1PH3xqput+R50Aj UIKVyG2DR1tEWBrAF+2WTY1AHW3TX4Uj2YjsBWJ0uCDcNSeGaRsQaYWqHG5PfZzcEcvg msJA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:mime-version:from:in-reply-to:date:cc :message-id:references:to; bh=tpWtCpIWQbbLuUmEj5+/M41giVUPrFxYZSDQ4bgWxX0=; b=d1bs+RA/K1Dkvugi1eT1cjUQBZtZHHafDKIdN81PUXjmNsaSW6K0j/8rrNge8KT7FL 00Mx7ljkEwxMkjy5C/0F0rlJfoASrhzqTZ844PkTwM7Ygdxmt8Y5sC78aM/9qW8qloEu g9BbukhyD6MtL6o1L2Bbza/+umeADQPfX6y2kf/2F/uZs7NQQ7ojG/R3GIsveNS+0g0E mb8gBUc6MsE+K3+FBdC8hAaLYXlTR7nq4D412X7o3Ba3gSdwMG8PC8MM27yh15/iVh6O lJ5YxYq17WQrNMPzN9VKLuhUYK+EytnqV9DDMOlzgZIR7i7givb9uU2n1vyiYnBpR/5k qNYA==
X-Gm-Message-State: AIkVDXJYxQ1jOktlHO0qAcaYjuiuojrU8BDRE04AniAJWjsYE53KzVCdo+7LKZVUxs8iJg==
X-Received: by 10.98.131.67 with SMTP id h64mr60442290pfe.86.1483511260124; Tue, 03 Jan 2017 22:27:40 -0800 (PST)
Received: from [192.168.7.24] (c-24-6-172-77.hsd1.ca.comcast.net. [24.6.172.77]) by smtp.gmail.com with ESMTPSA id t21sm144030340pfa.1.2017.01.03.22.27.38 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Tue, 03 Jan 2017 22:27:39 -0800 (PST)
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
Content-Type: multipart/signed; boundary="Apple-Mail=_EEB92179-AEE0-4D8A-949B-C1428BEBA922"; protocol="application/pgp-signature"; micalg="pgp-sha512"
X-Pgp-Agent: GPGMail
From: David Conrad <drc@virtualized.org>
In-Reply-To: <20161221055007.4BFD212951C@ietfa.amsl.com>
Date: Tue, 03 Jan 2017 22:27:37 -0800
Message-Id: <60F9D7F6-5005-484D-94DA-3534BDA040B1@virtualized.org>
References: <20161221000237.24158.qmail@ary.lan> <EBCD2226-35F7-4B18-B849-D2311F1160F8@virtualized.org> <AA90B2D2-4B7C-4693-ADF3-2004CC09641A@ogud.com> <20161221055007.4BFD212951C@ietfa.amsl.com>
To: ac <ac@main.me>
X-Mailer: Apple Mail (2.3124)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/Kvhd-TFzceG7Re7A8Sjo-Rsqhfo>
Cc: "dnsop@ietf.org WG" <dnsop@ietf.org>
Subject: Re: [DNSOP] I-D Action: draft-vixie-dns-rpz-04.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Jan 2017 06:27:42 -0000

Andre,

On Dec 20, 2016, at 9:49 PM, ac <ac@main.me> wrote:
> I once made a very cool tool, it improved the life of many people as it
> allowed anyone to take over any pc running a certain operating system
> with the sole and great purpose of helping more users. It too was
> published, improved, altered and distributed widely
> 
> RPZ is like that.

No, it's not.

There is a rather striking difference between a tool I choose to deploy on my network that helps protects my users from external threats and a tool that allows an external entity to intrude on my users. If you do not understand this, there is a bigger problem to address.

> RPZ will be legitimized by this draft, it will be used and living human
> beings may actually die because of server software.

RPZ is legitimized by its use, not by the documentation describing that use.  Proverbially sticking your head in the sand does not remove the carnivores that are eyeing the rest of your body.

> And, this is my final word on this, I apologize if anyone feels that I
> have wasted their time or offended them in any way. This was never my
> intention.

It would appear your intention is to school the ignorant masses in the errors of their ways. Personally, I'm always a bit nervous when someone decides they know what's best for me or the folks I might provide services for.

Regards,
-drc
(speaking only for myself)

v2.23.0 | Report a Bug | By Email