Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns-alt-tld
Martin Schanzenbach <mschanzenbach@posteo.de> Mon, 01 August 2022 17:10 UTC
Return-Path: <mschanzenbach@posteo.de>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2AF37C14F72B for <dnsop@ietfa.amsl.com>; Mon, 1 Aug 2022 10:10:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.41
X-Spam-Level:
X-Spam-Status: No, score=-4.41 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=posteo.de
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mAwQtZJlfjeI for <dnsop@ietfa.amsl.com>; Mon, 1 Aug 2022 10:10:45 -0700 (PDT)
Received: from mout01.posteo.de (mout01.posteo.de [185.67.36.65]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CA1DCC157B5C for <dnsop@ietf.org>; Mon, 1 Aug 2022 10:10:44 -0700 (PDT)
Received: from submission (posteo.de [185.67.36.169]) by mout01.posteo.de (Postfix) with ESMTPS id 0EA30240026 for <dnsop@ietf.org>; Mon, 1 Aug 2022 19:10:40 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=posteo.de; s=2017; t=1659373842; bh=GcaIcAxYgtn/djqrNePpTzd6r8v/G0tw1VSYiodeRUc=; h=From:To:Cc:Subject:Date:From; b=T1UGvehRV/gOZIShK26LjR/98BADnT0yZMYfh3oXI2MFH5xCnzoYGtbybWL29kGTI 2GJhT5BwQsUJHMXKr6MCWpz3PKpy2V0u5w79AQP0rdJZ06aW43eQ65ZfUdbSAHZJ1K E8NlO5E7TIsMJi1sT1tSx/+5MFme8fRAUgmMwRt1IKFevWG2MoGP3Y/tFNibdRxHxR 8wsjcthPhBCCbsAZ7RIZujXiYyDUWNxsngh82aEgaU8fYx1yA3AhCH4eqow3ZPznPu g2bK2aGY0Nyaz9b2x+XnKclVjwYV8Gj3H/GOk+otPpLCy+YewsrKCRMIeaFGX6LOOX pkDnsjEwjSmJg==
Received: from customer (localhost [127.0.0.1]) by submission (posteo.de) with ESMTPSA id 4LxPlM30FVz9rxb; Mon, 1 Aug 2022 19:10:39 +0200 (CEST)
From: Martin Schanzenbach <mschanzenbach@posteo.de>
To: Stephane Bortzmeyer <bortzmeyer@nic.fr>
Cc: Independent Submissions Editor <rfc-ise@rfc-editor.org>, dnsop <dnsop@ietf.org>
In-reply-to: <YufxYmxz9L8zG9hS@nic.fr>
References: <91abb9ac-9d3b-87bf-5639-174581d625fd@rfc-editor.org> <YufxYmxz9L8zG9hS@nic.fr>
Date: Mon, 01 Aug 2022 17:10:38 +0000
Message-Id: <1659368624-sup-8402@werkbank>
Content-Transfer-Encoding: 8bit
MIME-Version: 1.0
Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg="pgp-sha256"; boundary="=-1659373838-988992-170943-3553-1-="
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/S1Up3rDLNZi5RWCcMf_kY1clByQ>
Subject: Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns-alt-tld
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Aug 2022 17:10:50 -0000
Excerpts from Stephane Bortzmeyer's message of 2022-08-01 17:29:38 +0200: > On Mon, Aug 01, 2022 at 02:31:48PM +0200, > Independent Submissions Editor (Eliot Lear) <rfc-ise@rfc-editor.org> wrote > a message of 89 lines which said: > > > Whether that means using TLD labels that begin with _ or whether > > that means suffixing them with ".ALT", I leave to you experts to > > sort. I do agree with Martin that it would be helpful to have some > > registration of names so that conflicts between name spaces can be > > avoided. This would also encourage formal documentation of those > > projects. > > I agree and I think publication of these drafts would be a good idea > (may be with status Experimental since, as Joe Abley said, there is > clearly no IETF consensus). Note that I am skeptical about their use: > most people who "preempt" .eth, .bitcoin, .web3 or .myownprotocol will > not read the RFC and, if they do, won't follow it. But at least we > will be able to say that we tried and we have a solution (and not a > ridiculous one such as "pay ICANN 185 000 US $"). > tl;dr: I am a bit ambivalent towards the ".alt" approach. For alternative name systems that are specified with status "Informational" the use of ".alt" seems highly unattractive as there is absolutely no benefit in using it but at the same time there are (obvious) disadvantages especially compared to other name systems which do not (try to) publish in the RFC series. --- Reasons: With our draft you would have one system which references this "solution", as opposed to specifying solution looking for a problem. That being said, since our current draft is Informational, I do not think the existence of an ".alt"-RFC would significantly alter our protocol implementation or deployment for now. There is just no benefit for a name system in using it. The benefit lies solely with DNS and the existing infrastructure. After all, a new "Standards Track" name system that could potentially be used as a DNS-drop-in would not be designed or specified using ".alt", right? That would be like requiring DoH servers to only process names under ".doh.alt". But they do not and never have, because even though the technical resolution process is different, it is still the same namespace. So what if (yes I know very theoretical) ICANN and TLD-registrars publish their zones in GNS? Is it still www.example.com.gns.alt or would it be the _same_ namespace managed by the _same_ authorities resolved through GNS and become www.example.com? If the latter is the case, what is the purpose of ".gns.alt"? Further, migration becomes more difficult with ".alt". For example, is it possible to get X.509 certificates issued for those domains? Not to mention that users have to deal with (significantly!) longer names as you need a second-level indicator on which name system is asked for. e.g.: www.example.com.gns.alt vs www.example.com So unless IESG actually finds a conflict and we have to put it in the specification as a requirement, I don't see why we (GNUnet) should use it at all in practice for our implementation. Since our draft is Informational, I also do not see any urgency. But, I think it makes sense to have provisions in the draft that discuss this issue and show how *in a deployment* this possible namespace ambiguity may be avoided using ".alt" independently of how the currently documented implementation operates. Maybe we would add a ".alt"-RFC-compliance configuration option that limits resolution to ".gns.alt" etc. (there would be no reason for any user to set it, realistically) Really, though, all this was just a matter of following RFC6761 IMO... BR Martin
- [DNSOP] draft-schanzen-gns and draft-ietf-dns-alt… Independent Submissions Editor (Eliot Lear)
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Ben Schwartz
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Joe Abley
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Stephane Bortzmeyer
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Paul Vixie
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Martin Schanzenbach
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Peter Thomassen
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… John Levine
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… John Levine
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Paul Wouters
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… George Michaelson
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Independent Submissions Editor (Eliot Lear)
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Martin Schanzenbach
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Joe Abley
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Independent Submissions Editor (Eliot Lear)
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Joe Abley
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Independent Submissions Editor (Eliot Lear)
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Vladimír Čunát
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Martin Schanzenbach
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Vladimír Čunát
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Schanzenbach, Martin
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Geoff Huston
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… David Conrad
- Re: [DNSOP] [Ext] draft-schanzen-gns and draft-ie… Paul Hoffman
- Re: [DNSOP] [Ext] draft-schanzen-gns and draft-ie… Andrew Sullivan
- Re: [DNSOP] [Ext] draft-schanzen-gns and draft-ie… John R. Levine
- Re: [DNSOP] [Ext] draft-schanzen-gns and draft-ie… Martin Schanzenbach
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Paul Vixie
- Re: [DNSOP] [Ext] draft-schanzen-gns and draft-ie… Schanzenbach, Martin
- Re: [DNSOP] [Ext] draft-schanzen-gns and draft-ie… Paul Hoffman
- Re: [DNSOP] [Ext] draft-schanzen-gns and draft-ie… Schanzenbach, Martin
- Re: [DNSOP] [Ext] draft-schanzen-gns and draft-ie… Paul Hoffman
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Brian Dickson
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Martin Schanzenbach
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Vittorio Bertola
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Schanzenbach, Martin
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… Vittorio Bertola
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… Schanzenbach, Martin
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… Schanzenbach, Martin
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… David Conrad
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… Schanzenbach, Martin
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Brian Dickson
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… Independent Submissions Editor (Eliot Lear)
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… Christian Huitema
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… George Michaelson
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… Christian Huitema
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… John Levine
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… George Michaelson
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… Christian Huitema
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… Joe Abley
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… Independent Submissions Editor (Eliot Lear)
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… Vittorio Bertola
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… Paul Wouters
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… Paul Wouters
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… Jim Reid
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… John R Levine
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… Paul Hoffman
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… Paul Wouters
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… Paul Vixie
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Ray Bellis
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… Vladimír Čunát
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… John Levine
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Stephen Farrell
- Re: [DNSOP] [EXT] Re: draft-schanzen-gns and draf… Christian Huitema
- Re: [DNSOP] draft-schanzen-gns and namespace mech… Brian Dickson
- Re: [DNSOP] draft-schanzen-gns and namespace mech… Schanzenbach, Martin
- Re: [DNSOP] draft-schanzen-gns and namespace mech… Schanzenbach, Martin
- Re: [DNSOP] draft-schanzen-gns and draft-ietf-dns… Harald Alvestrand