Re: [DNSOP] discussion for draft-appelbaum-dnsop-onion-tld-00.txt

joel jaeggli <joelja@bogus.com> Sat, 21 March 2015 19:56 UTC

To: Andrew Sullivan <ajs@anvilwalrusden.com>, dnsop@ietf.org, Richard Barnes <rlb@ipv.sx>
references: <CAFggDF0XX3v7yGsaCwFnE7cjK0yz4-frxFgoBJfnztO8k-LFBg@mail.gmail.com> <alpine.LFD.2.10.1503162052420.20709@bofh.nohats.ca> <D12DE3BF.B714%alecm@fb.com> <CAL02cgS95hx6tWH36COGva5fx8NhPUebcPKdNqXs+u4rCcr4nQ@mail.gmail.com> <20150318011115.GG4385@mx1.yitter.info>
From: joel jaeggli <joelja@bogus.com>
message-id: <550DCD03.1050905@bogus.com>
Date: Sat, 21 Mar 2015 14:56:51 -0500
user-agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:37.0) Gecko/20100101 Thunderbird/37.0
mime-version: 1.0
in-reply-to: <20150318011115.GG4385@mx1.yitter.info>
Content-Type: multipart/signed; micalg="pgp-sha1"; protocol="application/pgp-signature"; boundary="BWPxnquC3mu6GenBLI1AcvllSlgdrD1ko"
Archived-At: <http://mailarchive.ietf.org/arch/msg/dnsop/Qk-x4fptrsASD3HOEBW_Thp53Go>
Subject: Re: [DNSOP] discussion for draft-appelbaum-dnsop-onion-tld-00.txt
Precedence: list

On 3/17/15 8:11 PM, Andrew Sullivan wrote:
> On Tue, Mar 17, 2015 at 12:59:25PM -0400, Richard Barnes wrote:
>>>>
>>>> If an application does not implement tor, and is not tor aware, it
>>>> _will_ do a DNS lookup. You can't really go ask the world to stop
>>>> doing that. You need to deal with that fact.
>>>
>>
>> The entire point of the special use domains registry is to tell general
>> clients how to behave with regard to special-use names.  It exists
>> precisely to tell the world the DNS names for which they should not do
>> lookups, because they require different handling.
> 
> Actually, my understanding is that the point of the special use
> domains registry is to create a repository for applications so that,
> _if_ they are looking at names in domain name slots and trying to do
> something sensible, they know where to look to learn about those
> sensible things.
> 
> There is no way for a document to specify, "Don't look stuff up in the
> DNS."  If we had a reliable way to make that rule, AS112 wouldn't have
> been necessary.  I think there's nothing wrong with the document
> saying that you _shouldn't_ look them up, because they're promised not
> to give you a response anyway so it's just pollution traffic.  But do
> not delude yourself into thinking that adding stuff to the special
> names registry will do anything to prevent leaking.  It will not.

it certainly cannot prevent leakage from resolvers unaware of the new
reservation.

something like  the .alt probably might once iplemented, do so for
future spaces assuming it were used.

> A
>

Attachment: signature.asc

Re: [DNSOP] discussion for draft-appelbaum-dnsop-… David Conrad
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… David Cake
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Rubens Kuhl
[DNSOP] discussion for draft-appelbaum-dnsop-onio… Jacob Appelbaum
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Paul Wouters
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… hellekin
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Paul Wouters
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… hellekin
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Alec Muffett
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Christian Grothoff
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… David Conrad
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… hellekin
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Alec Muffett
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… David Conrad
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Richard Barnes
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Tim Wicinski
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… David Conrad
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Alec Muffett
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Rubens Kuhl
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… David Cake
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Alec Muffett
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Hugo Maxwell Connery
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… hellekin
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… David Conrad
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Ted Lemon
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Alec Muffett
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Rubens Kuhl
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Alec Muffett
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Rubens Kuhl
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Tom Ritter
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Richard Barnes
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Andrew Sullivan
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Andrew Sullivan
[DNSOP] draft-grothoff (was Re: discussion for dr… David Conrad
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… hellekin
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Ted Lemon
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Florian Weimer
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Edward Lewis
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Andrew Sullivan
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… joel jaeggli
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Warren Kumari
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… John Levine
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Alec Muffett
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Andrew Sullivan
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Hugo Connery
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… hellekin
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Alec Muffett
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… hellekin
Re: [DNSOP] discussion for draft-appelbaum-dnsop-… Alec Muffett

Re: [DNSOP] discussion for draft-appelbaum-dnsop-onion-tld-00.txt

Attachment: signature.asc