Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tld-00.txt> (The .onion Special-Use Domain Name) to Proposed Standard
hellekin <hellekin@gnu.org> Wed, 15 July 2015 15:39 UTC
Return-Path: <hellekin@gnu.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0D8FA1ACE67 for <dnsop@ietfa.amsl.com>; Wed, 15 Jul 2015 08:39:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.911
X-Spam-Level:
X-Spam-Status: No, score=-1.911 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 73w-SSD4xiHI for <dnsop@ietfa.amsl.com>; Wed, 15 Jul 2015 08:39:48 -0700 (PDT)
Received: from eggs.gnu.org (eggs.gnu.org [IPv6:2001:4830:134:3::10]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 21A4B1ACE5D for <dnsop@ietf.org>; Wed, 15 Jul 2015 08:39:47 -0700 (PDT)
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from <hellekin@gnu.org>) id 1ZFOmZ-0005v7-5Q for dnsop@ietf.org; Wed, 15 Jul 2015 11:39:45 -0400
Received: from fencepost.gnu.org ([2001:4830:134:3::e]:52017) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from <hellekin@gnu.org>) id 1ZFOmZ-0005v3-32 for dnsop@ietf.org; Wed, 15 Jul 2015 11:39:39 -0400
Received: from ol168-138.fibertel.com.ar ([24.232.138.168]:58294 helo=raiz.hellekin.gnu) by fencepost.gnu.org with esmtpsa (TLS1.2:DHE_RSA_AES_128_CBC_SHA1:128) (Exim 4.82) (envelope-from <hellekin@gnu.org>) id 1ZFOmY-0004Hp-Ji for dnsop@ietf.org; Wed, 15 Jul 2015 11:39:38 -0400
Message-ID: <55A67E8F.2000006@gnu.org>
Date: Wed, 15 Jul 2015 12:38:55 -0300
From: hellekin <hellekin@gnu.org>
Organization: https://gnu.org/consensus
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Icedove/31.6.0
MIME-Version: 1.0
To: dnsop@ietf.org
References: <20150714192438.1138.96059.idtracker@ietfa.amsl.com> <D1CBC489.D039%edward.lewis@icann.org>
In-Reply-To: <D1CBC489.D039%edward.lewis@icann.org>
Content-Type: text/plain; charset="windows-1252"
Content-Transfer-Encoding: 8bit
X-detected-operating-system: by eggs.gnu.org: Error: Malformed IPv6 address (bad octet value).
X-Received-From: 2001:4830:134:3::e
Archived-At: <http://mailarchive.ietf.org/arch/msg/dnsop/QKr3_p23bQPbVepeIv-iKHBw32k>
Subject: Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tld-00.txt> (The .onion Special-Use Domain Name) to Proposed Standard
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Jul 2015 15:39:54 -0000
On 07/15/2015 09:42 AM, Edward Lewis wrote: > > The document defines the use of the name by referring to a couple of > references, none of which appears to be published in a way that can be > referenced except by URL. > I agree that the URL could be use more foresight, e.g. https://torproject.org/spec/protocol, https://torproject.org/spec/naming, etc. I already suggested this form to the Tor people without response. That said, an URL is the right thing to do, as long as it does not change. Once the URL makes it to an RFC, it is the responsibility of the domain operators to keep it running. When the Tor specifications are updated to RFC status, then the .onion tld RFC can be updated as well to point to the new references. > > Drilling into the criteria that are presented. Not all of them. > > 1. Users. The draft states "human users are expected to recognize .on ion > names as..." How are users supposed to recognize them as (special)? In > as much as the document says nothing about evidence of deployment and > adoption, how can an expectation be developed? If I hadn't been readi ng > the thread on DNSOP, I wouldn't have thought "onion" was special - but I > live in a cave, so what I think isn't important. > The original P2PNames draft use: "Users can use these names as they would other domain names, entering them anywhere that they would otherwise enter a conventional DNS domain name. Since there is no central authority necessary or possible for assigning .onion names, and those names correspond to cryptographic keys, users need to be aware that they do not belong to regular DNS, but are still global in their scope." > 4. Caching DNS Servers and > 5. Authoritative DNS Servers > *** Well, isn't it the point of this draft that "as software matures onion names will not be in DNS queries"? These points are to minimize the consequences on privacy when misconfigured systems leak queries, and to minimize the number of bogus requests hitting the DNS tree. > 6. DNS Operators > *** Again, this is not about enforcing, but about establishing best practice. People can rely on RFC documentation and conscientious operators will apply what's written there. > 7. DNS Registrars/Registries > > This is the place where a case should be made for the registering "oni on" > as a Special Use Domain Name. Given the story to date, that "onion" i s > not to be in the DNS, then don't change the protocol (5,6 above) but t hen > set up barriers to putting it in the DNS (7 here). If you do that, th en > Name Resolution libraries (3 above) will return "name error" or NXDOMA IN > to all queries in the onion domain of names. I see this as where > registry policy documents can "point" (by reference) to a list of name s > that are specially reserved or restricted. > > My concern is that, if this application proceeds as documented, > the precedent being set could be regrettable. > *** Are you suggesting then that only 7. is kept? In any case I recommend reading the original proposal for .onion in the P2PNames draft 04 for an alternate view. Maybe some of the questions there can be useful here. https://tools.ietf.org/html/draft-grothoff-iesg-special-use-p2p-names-04 #section-4.3.1 == hk
- [DNSOP] Last Call: <draft-ietf-dnsop-onion-tld-00… The IESG
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Ted Hardie
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Stephane Bortzmeyer
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… David Conrad
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Patrik Fältström
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Edward Lewis
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Stephane Bortzmeyer
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Stephane Bortzmeyer
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Bob Harold
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Edward Lewis
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… hellekin
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… hellekin
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Hugo Maxwell Connery
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Ted Lemon
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Ted Lemon
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Richard Barnes
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Edward Lewis
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Ted Lemon
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Edward Lewis
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Ted Lemon
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… John Levine
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Edward Lewis
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… David Conrad
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… hellekin
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Rubens Kuhl
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Francisco Obispo
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Ted Lemon
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Ted Lemon
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Ted Lemon
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Francisco Obispo
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Ted Lemon
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Francisco Obispo
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Ted Lemon
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Francisco Obispo
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Joe Hildebrand
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… hellekin
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Hugo Maxwell Connery
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… hellekin
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Tom Ritter
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Ted Lemon
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Richard Barnes
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Edward Lewis
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… David Conrad
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… David Conrad
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Paul Vixie
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… David Conrad
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Tim Wicinski
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Paul Vixie
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… joel jaeggli
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Andrew Sullivan
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Andrew Sullivan
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… David Conrad
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… hellekin
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Joseph Lorenzo Hall
- Re: [DNSOP] Stability of identifiers (Was: Last C… joel jaeggli
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… joel jaeggli
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… joel jaeggli
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Hugo Maxwell Connery
- [DNSOP] Stability of identifiers (Was: Last Call:… Stephane Bortzmeyer
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Stephane Bortzmeyer
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Stephane Bortzmeyer
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Eliot Lear
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Stephane Bortzmeyer
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… David Conrad
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… David Conrad
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Richard Barnes
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… hellekin
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Hugo Maxwell Connery
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… hellekin
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Eliot Lear
- [DNSOP] namespace control (was Re: Last Call: <dr… David Conrad
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… hellekin
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Paul Vixie
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Paul Vixie
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… hellekin
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Paul Vixie
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Francisco Obispo
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Rubens Kuhl
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… hellekin
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Ted Lemon
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Rubens Kuhl
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Ted Lemon
- Re: [DNSOP] what's in .alt, was Last Call: <draft… John Levine
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Ted Lemon
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… David Conrad
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Ted Lemon
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… John Levine
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… joel jaeggli
- Re: [DNSOP] what's in .alt, was Last Call: <draft… Paul Vixie
- [DNSOP] what's in .alt, was Last Call: <draft-iet… Hugo Maxwell Connery
- Re: [DNSOP] what's in .alt, was Last Call: <draft… Hugo Maxwell Connery
- Re: [DNSOP] what's in .alt, was Last Call: <draft… John R Levine
- Re: [DNSOP] what's in .alt, was Last Call: <draft… Paul Vixie
- Re: [DNSOP] what's in .alt, was Last Call: <draft… John R Levine
- Re: [DNSOP] what's in .alt, was Last Call: <draft… Bob Bownes -Seiri
- Re: [DNSOP] what's in .alt, was Last Call: <draft… John R Levine
- Re: [DNSOP] what's in .alt, was Last Call: <draft… Paul Vixie
- Re: [DNSOP] what's in .alt, was Last Call: <draft… John R Levine
- Re: [DNSOP] what's in .alt, was Last Call: <draft… joel jaeggli
- Re: [DNSOP] what's in .alt, was Last Call: <draft… Hugo Maxwell Connery
- Re: [DNSOP] what's in .alt, was Last Call: <draft… Andrew Sullivan
- Re: [DNSOP] what's in .alt, was Last Call: <draft… Christian Grothoff
- Re: [DNSOP] what's in .alt, was Last Call: <draft… Steve Crocker
- Re: [DNSOP] what's in .alt, was Last Call: <draft… Steve Crocker
- Re: [DNSOP] what's in .alt, was Last Call: <draft… Paul Vixie
- Re: [DNSOP] what's in .alt, was Last Call: <draft… Patrik Fältström
- Re: [DNSOP] what's in .alt, was Last Call: <draft… David Conrad
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Florian Weimer
- Re: [DNSOP] what's in .alt, was Last Call: <draft… Paul Vixie
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… David Cake
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… David Cake
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… David Cake
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… David Cake
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… David Cake
- Re: [DNSOP] what's in .alt, was Last Call: <draft… David Cake
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Eliot Lear
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… David Conrad
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Patrik Fältström
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Alec Muffett
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Eliot Lear
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… John Levine
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… hellekin
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Bob Harold
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Ian Maddison
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… John C Klensin
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… David Cake
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Edward Lewis
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Wendy Seltzer
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Edward Lewis
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Chris Baker
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Edward Lewis
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Jacob Appelbaum
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Mark Andrews
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Alec Muffett
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Ted Hardie
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Alec Muffett
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… hellekin
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Ted Hardie
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… John Levine
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Alec Muffett
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Steve Crocker
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Mark Andrews
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Joe Hildebrand
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… John R Levine
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Alec Muffett
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Darcy Kevin (FCA)
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Mark Nottingham
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Alec Muffett
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Andrew Sullivan
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Sam Hartman
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Darcy Kevin (FCA)
- Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tl… Roy T. Fielding