Re: [DNSOP] DNSOP Call for Adoption draft-vixie-dns-rpz

"Ralf Weber" <dns@fl1ger.de> Wed, 21 December 2016 06:26 UTC

Return-Path: <dns@fl1ger.de>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2989312947E for <dnsop@ietfa.amsl.com>; Tue, 20 Dec 2016 22:26:09 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OMGcIvOa-jkz for <dnsop@ietfa.amsl.com>; Tue, 20 Dec 2016 22:26:08 -0800 (PST)
Received: from smtp.guxx.net (nyx.guxx.net [85.10.208.173]) by ietfa.amsl.com (Postfix) with ESMTP id E7099127058 for <dnsop@ietf.org>; Tue, 20 Dec 2016 22:19:38 -0800 (PST)
Received: by nyx.guxx.net (Postfix, from userid 107) id 2ED275F404CD; Wed, 21 Dec 2016 07:19:38 +0100 (CET)
Received: from [172.16.195.1] (p57B9F5E5.dip0.t-ipconnect.de [87.185.245.229]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by nyx.guxx.net (Postfix) with ESMTPSA id 759185F402AD; Wed, 21 Dec 2016 07:19:35 +0100 (CET)
From: "Ralf Weber" <dns@fl1ger.de>
To: "Paul Hoffman" <paul.hoffman@vpnc.org>
Date: Wed, 21 Dec 2016 07:19:34 +0100
Message-ID: <5248A099-7E1F-437A-A1B7-C300F917D273@fl1ger.de>
In-Reply-To: <C18E2D4E-EE89-4AF6-B4A0-FAD1A7A01B5E@vpnc.org>
References: <CADyWQ+ETSd199ok0fgh=PB=--hW7buPgSoCg22aK51Bk4xxBmw@mail.gmail.com> <C18E2D4E-EE89-4AF6-B4A0-FAD1A7A01B5E@vpnc.org>
MIME-Version: 1.0
Content-Type: text/plain; format=flowed
X-Mailer: MailMate (1.9.6r5318)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/PCdHjDHhuxa6E1DeyUgY_liak4k>
Cc: dnsop <dnsop@ietf.org>
Subject: Re: [DNSOP] DNSOP Call for Adoption draft-vixie-dns-rpz
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 21 Dec 2016 06:26:09 -0000

Moin!

On 20 Dec 2016, at 17:33, Paul Hoffman wrote:

> On 20 Dec 2016, at 7:16, tjw ietf wrote:
>
>> Please review this draft to see if you think it is suitable for 
>> adoption by
>> DNSOP, and comments to the list, clearly stating your view.
>
> The draft itself is really not suitable for adoption by the WG. Just 
> slapping "Informational" on the document is insufficient for 
> preventing a lot of wasted effort by the WG in removing the parts of 
> the document that promote the practices described.
Other then in section 1, I didn't see this. However your response is yet 
another
examples why we don't have operator participation in the IETF though we 
always
say that we want it.

I've talked to lots of operators of recursive DNS servers and nearly all 
of them
have some form of DNS blocking/redirection, yet whenever this comes up 
in the
IETF sometimes even from operators (draft-livingood-dns-redirect) we 
look the
other way and say this does/should not exist.

Well it does and if the IETF wants to be relevant to those operators it 
would be
good if we had documents describing this, so they could be used as 
guidelines.

And while I don't like yet another draft that encodes something in DNS 
data that
was not meant to be DNS data I have to agree that this draft is relevant 
to
this working group and given that we have already multiple 
implementations of
it I think that the draft is something the working group should adopt.

So long
-Ralf