IETF Logo Mail Archive

Re: [DNSOP] updated to draft-wing-dnsop-structured-dns-error-page-01

tirumal reddy <kondtir@gmail.com> Tue, 16 November 2021 06:25 UTC

Return-Path: <kondtir@gmail.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C3EA13A08C9 for <dnsop@ietfa.amsl.com>; Mon, 15 Nov 2021 22:25:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HRhVNns9KSCY for <dnsop@ietfa.amsl.com>; Mon, 15 Nov 2021 22:25:02 -0800 (PST)
Received: from mail-lf1-x12f.google.com (mail-lf1-x12f.google.com [IPv6:2a00:1450:4864:20::12f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 01F4C3A08D0 for <dnsop@ietf.org>; Mon, 15 Nov 2021 22:25:01 -0800 (PST)
Received: by mail-lf1-x12f.google.com with SMTP id b1so44390706lfs.13 for <dnsop@ietf.org>; Mon, 15 Nov 2021 22:25:01 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=UsoTECMDUx7g4JJkDQXs66b0v6i0KsTVq5AHXXIZIDw=; b=R1cqJYepTGpM1oaLACF4W9pHoDgfikOexM2Jgl/pzuarL42o0EC3BqTT6LB+jTXxD+ FfkV4KgfDpWss58Iya5QD7AdRf+sSNc8SktAyS+ofQeeqVZHDZui1Uch4mWZuVWkwwe6 0DJI+t2g+k1kQjqNHM/IhRDenWeUwarhPQJKGVssYGU3TGwHKifIjOsya8GBDoEFrgek JmRAeex7Ulxd4AFHH0lvnJ5OwlxE0dempVGNncbrt9bAada66bb/mznWAuSRNNLxieHZ vlC1sNp0z+Fbi8CAyYRPWOAI0bN7EVNXG6g9odNowO3a3ChuNZFJFdjnjJwQscC6avi1 6oGA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=UsoTECMDUx7g4JJkDQXs66b0v6i0KsTVq5AHXXIZIDw=; b=xKMTyLVYeVwE2b02KurBg97BsJTtYuilBIovIiiJbmxXFPvHeuC9ONWoYPjsjlQ22W sBGdgFWICZUgwB2gqVZZlwRv8joCQeiLBnd+D3A4Z00aXOlYjCNppPb7jIV8piTJnPP4 l46kBKylzfsTaqUxst/+pE4mY4BUY+IlyxfL3OEcndCpL/MNzFw/MmMeDxTX0oBLD3c0 B9BtY6qm1TMjtgiyIo5849EdPOHWkwFTfgs4dLoRPo6YB3SezPxGH/Ef9O9Vx1rs7KfI jvjI2JNfP8whsoQKFk+5Sn9dWnPHfnV9zkud5FWGsO78nFFOi6/Kqci6baX1FTERxO9j CwaQ==
X-Gm-Message-State: AOAM531A/K2xUhUKmVuSaA2QYqg/TcWHzEQG5UwHGcpJ7cFmjge1H139 EYFLo+uugU9U81kpShp3wAJ3Jmtho+PtqdOkHlc=
X-Google-Smtp-Source: ABdhPJw/4ZVbWDELiuHo+1tqGYTYu9j3OZvolGqa+ynp0fRRxrAbZXylS4gVASgd2KL3YIKhOxZPvrFD6hjkz9Q6+ws=
X-Received: by 2002:a19:6754:: with SMTP id e20mr4226582lfj.122.1637043899472; Mon, 15 Nov 2021 22:24:59 -0800 (PST)
MIME-Version: 1.0
References: <D1CF0779-EAB3-4759-8F50-643E9EC8C490@gmail.com> <d7f55c0d-0746-9c74-2ff1-ebdcec7ad45e@isc.org> <CAHbrMsAny1+Hwgyz9r2pJN=NRQscyy4JZ2P9Ct9CLaJqb6QS1Q@mail.gmail.com>
In-Reply-To: <CAHbrMsAny1+Hwgyz9r2pJN=NRQscyy4JZ2P9Ct9CLaJqb6QS1Q@mail.gmail.com>
From: tirumal reddy <kondtir@gmail.com>
Date: Tue, 16 Nov 2021 11:54:48 +0530
Message-ID: <CAFpG3ge5eS7s7YnXK1wfyyZ_fWuausku4-CVKrWZP--Durq1Lw@mail.gmail.com>
To: Ben Schwartz <bemasc=40google.com@dmarc.ietf.org>
Cc: Petr Špaček <pspacek@isc.org>, dnsop@ietf.org
Content-Type: multipart/alternative; boundary="0000000000001c1f4f05d0e1fca3"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/Ouxi6HfGFHDjhftnKZgjpLqQsas>
Subject: Re: [DNSOP] updated to draft-wing-dnsop-structured-dns-error-page-01
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 16 Nov 2021 06:25:07 -0000

On Fri, 12 Nov 2021 at 20:55, Ben Schwartz <bemasc=
40google.com@dmarc.ietf.org> wrote:

>
>
> On Wed, Nov 10, 2021 at 11:18 AM Petr Špaček <pspacek@isc.org> wrote:
> ...
>
>> 2. If the new option was present in query, then DNS responder sends back
>> Extended DNS Errors option (EDE, RFC 8914) with INFO-TEXT field
>> formatted according to structured JSON specified in this draft.
>>
>
> I like this idea a lot.  In fact, I don't even think we need a new
> option.  It's not as if INFO-TEXT is already widely used.  We can just
> declare something like "if the INFO-TEXT is JSON, here's what it means".
>
> This also allows us to remove the "access denied" emphasis, and broaden
> our focus to explaining all kinds of resolution failures.
>

Sounds good to me, it requires an update to RFC8914 to add JSON in
EXTRA-TEXT.


>
> I also agree that requiring an HTTP URL seems out of place here.
>

The HTTP URL is for the end-user to report mis-classified DNS filtering of
a domain.


> I would prefer an "ID" string of unspecified contents, so that operators
> can use UUIDs, domain names holding TXT records, URIs, or whatever
> mechanism they want to identify failure types.
>

Yes, ID string is useful and the content can be opaque to the client. UUID
or URIs are useful for the DNS operator to identify the reason for failure.
I don't get the use of TXT records.

-Tiru

_______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop
>

v2.23.0 | Report a Bug | By Email