IETF Logo Mail Archive

Re: [DNSOP] I-D Action: draft-ietf-dnsop-dns-error-reporting-03.txt

Eduardo Duarte <eduardo.duarte@dns.pt> Wed, 26 October 2022 09:05 UTC

Return-Path: <eduardo.duarte@dns.pt>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4CAE1C14F738 for <dnsop@ietfa.amsl.com>; Wed, 26 Oct 2022 02:05:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.107
X-Spam-Level:
X-Spam-Status: No, score=-7.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=dns.pt
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LW_9gnZ2J4Gm for <dnsop@ietfa.amsl.com>; Wed, 26 Oct 2022 02:05:34 -0700 (PDT)
Received: from mail01.dns.pt (mail01.dns.pt [185.39.208.66]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 29B40C14F72A for <dnsop@ietf.org>; Wed, 26 Oct 2022 02:05:33 -0700 (PDT)
Received: from mail01.anubis.local (localhost [127.0.0.1]) by mail01.dns.pt (Postfix) with ESMTP id 4My2vv3Y2SzZcYF for <dnsop@ietf.org>; Wed, 26 Oct 2022 10:05:31 +0100 (WEST)
DKIM-Filter: OpenDKIM Filter v2.11.0 mail01.dns.pt 4My2vv3Y2SzZcYF
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=dns.pt; s=anubis; t=1666775131; bh=yQfJX+N+yfVI/vOyH3rKHM23/7jfa2Nm0yUtVFffrww=; h=Content-Type:Message-ID:Date:MIME-Version:Subject:To:From:From; b=asLk/Wl/R+iydOx3WTIzk1LPSbiJ2ZIj/NOguKgPfUqE4f8b2vFz88eAWtjITaSUH 90dNWrxIaak5w0UDBLDBkMkiqjKXUObTioouoIudWOwOCbbQ0/InSR2azzinQz+ujd NrNw60Qy52wt8EWHbtsioDpgagNcy+YviY/WTH+4=
X-MPS-TrackID: 4My2vv1Lf2zZcWLKNWP
Received: from [10.0.30.3] (unknown [10.0.30.3]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits)) (No client certificate requested) (Authenticated sender: eduardo.duarte@dns.pt) by mail01.anubis.local (Postfix) with ESMTPSA id 4My2vv1Lf2zZcWL for <dnsop@ietf.org>; Wed, 26 Oct 2022 10:05:30 +0100 (WEST)
Content-Type: multipart/alternative; boundary="------------zF9Gy09zuEwF3q0Ji2DlNHmm"
Message-ID: <146e7dd7-c234-4feb-3e1f-809cef90ba3e@dns.pt>
Date: Wed, 26 Oct 2022 11:05:28 +0200
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:102.0) Gecko/20100101 Thunderbird/102.4.0
Content-Language: pt-PT, en-GB
To: dnsop@ietf.org
References: <166661580808.65092.6480540062592006339@ietfa.amsl.com>
From: Eduardo Duarte <eduardo.duarte@dns.pt>
Organization: .PT
In-Reply-To: <166661580808.65092.6480540062592006339@ietfa.amsl.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/NK7LjVDVJNkjuueMnH4ZCDbg8So>
Subject: Re: [DNSOP] I-D Action: draft-ietf-dnsop-dns-error-reporting-03.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 26 Oct 2022 09:05:39 -0000

Hi all,

I'm not active in the WG but some one point out this draft during last 
week DNS-OARC meeting and I have a question for the Authors.
So from my understanding after reading the Draft all the reporting is 
done over DNS itself. Did the Authors think of adding other reporting 
mechanisms like REST+JSON or even email?
I'm bringing this up because I think it will be easier to integrate the 
error reporting to other monitoring tools in this way instead of reading 
the log file from a Reporting Agent.

eduardo_sign
Thank you and best regards,

Aviso de Confidencialidade/Disclaimer:
Este e-mail foi escrito de acordo com o novo acordo ortográfico.
Esta mensagem é exclusivamente destinada ao seu destinatário, podendo 
conter informação CONFIDENCIAL, cuja divulgação está expressamente 
vedada nos termos da lei. Caso tenha recepcionado indevidamente
esta mensagem, solicitamos-lhe que nos comunique esse mesmo facto por 
esta via devendo apagar o seu conteúdo de imediato.
This message is intended exclusively for its addressee. It may contain 
CONFIDENTIAL information protected by law. If this message has been 
received by error, please notify us via e-mail and delete it immediately.
[ Antes de imprimir esta mensagem pense no ambiente. Before printing 
this message, think about environment ]
Às 14:50 de 24/10/22, internet-drafts@ietf.org escreveu:
>
>
> A New Internet-Draft is available from the on-line Internet-Drafts directories.
> This draft is a work item of the Domain Name System Operations WG of the IETF.
>
>          Title           : DNS Error Reporting
>          Authors         : Roy Arends
>                            Matt Larson
>    Filename        : draft-ietf-dnsop-dns-error-reporting-03.txt
>    Pages           : 10
>    Date            : 2022-10-24
>
> Abstract:
>     DNS Error Reporting is a lightweight error reporting mechanism that
>     provides the operator of an authoritative server with reports on DNS
>     resource records that fail to resolve or validate, that a Domain
>     Owner or DNS Hosting organization can use to improve domain hosting.
>     The reports are based on Extended DNS Errors [RFC8914].
>
>     When a domain name fails to resolve or validate due to a
>     misconfiguration or an attack, the operator of the authoritative
>     server may be unaware of this.  To mitigate this lack of feedback,
>     this document describes a method for a validating recursive resolver
>     to automatically signal an error to an agent specified by the
>     authoritative server.  DNS Error Reporting uses the DNS to report
>     errors.
>
>
> The IETF datatracker status page for this draft is:
> https://datatracker.ietf.org/doc/draft-ietf-dnsop-dns-error-reporting/
>
> There is also an htmlized version available at:
> https://datatracker.ietf.org/doc/html/draft-ietf-dnsop-dns-error-reporting-03
>
> A diff from the previous version is available at:
> https://www.ietf.org/rfcdiff?url2=draft-ietf-dnsop-dns-error-reporting-03
>
>
> Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts
>
>
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop

v2.23.0 | Report a Bug | By Email