Re: [DNSOP] [homenet] WGLC on "redact" and "homenet-dot"
Ted Lemon <mellon@fugue.com> Thu, 15 December 2016 21:55 UTC
Return-Path: <mellon@fugue.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 53E0012946E for <dnsop@ietfa.amsl.com>; Thu, 15 Dec 2016 13:55:39 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zPI3tL8O9SEZ for <dnsop@ietfa.amsl.com>; Thu, 15 Dec 2016 13:55:37 -0800 (PST)
Received: from mail-qt0-x22d.google.com (mail-qt0-x22d.google.com [IPv6:2607:f8b0:400d:c0d::22d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 165BB129487 for <dnsop@ietf.org>; Thu, 15 Dec 2016 13:55:37 -0800 (PST)
Received: by mail-qt0-x22d.google.com with SMTP id p16so68540066qta.0 for <dnsop@ietf.org>; Thu, 15 Dec 2016 13:55:37 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20150623.gappssmtp.com; s=20150623; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=HQFCd6QjWpo04qBbMFusrQjV+DgB4w7vsEnvj5cav4k=; b=HnPrIExtBT8EivGk+F8XFScWaXodxAeT7RAE5aLjy1vVV/PWKzkbBUg/1KkhpkyCMV lDvqFICeejd6vdINY/862P27T5MzLJ2CwMp++7S6T4mDq2IUL4RwVjyOhzdCHcXXiJhX r95CZfwkvmGJK4iKPHPAP8szipH2pe9NGMQupD4iH0MOEqEjqDLiREYpaKCZkvT2vCDI ikAkhA6hqFcb2hepJOMAmo7WjHijj30+sOnlWxQvEm+of3ScPn/a9bxlmeTu6mg2Dfdn +aslY5vZOMSUI+ja8zFGYmN2PnXspGXV91yoEUtdMl/FiqkCrnAH4Zn79kPO7GV27Ifx T6XA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=HQFCd6QjWpo04qBbMFusrQjV+DgB4w7vsEnvj5cav4k=; b=IEEVWh5QP/CVNtOT1OKOA8r5i716crjiJlat3wG+3N9nc0svGlew8uXRcFI0rNeC9A oTlfwYpTIcLBOaoazK2oT8HsdPInZwCYZvBVYqheF2JvCn9XJDBAOiFljsrrl+JtHNbe 1YVFtj5TycZYokN87cDnbm4fkKzpJtT5lVmHuR4qgKLXNhgR8aQAHslEkZsGeIuXgku6 oOTIq6g50Zke6YhPf5WujKeY2qSAQmEgLq0AIgns10ZsO4YnV6n5BFbxMt2HUtPTpXtH 6tTWyrXSzO9mJ+ErtiIzmWMnAkgt6lR5RGNdIt1gK7VJgpjdmN62z57LuliJ3E4sRJSq H+Tw==
X-Gm-Message-State: AIkVDXL6TYGWPWten7ZhNI9wJPe1dKoi4WSCnN9JN6ITliN6c7P/Ph5m2bPpTxWr7HJzpw==
X-Received: by 10.237.59.119 with SMTP id q52mr2277633qte.225.1481838936244; Thu, 15 Dec 2016 13:55:36 -0800 (PST)
Received: from [192.168.1.131] (c-73-167-64-188.hsd1.ma.comcast.net. [73.167.64.188]) by smtp.gmail.com with ESMTPSA id e63sm2115888qkc.29.2016.12.15.13.55.34 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 15 Dec 2016 13:55:34 -0800 (PST)
From: Ted Lemon <mellon@fugue.com>
Message-Id: <3E04D8BB-D18F-4D9B-81C3-991BCF76FBE7@fugue.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_29D1A23D-8DCE-42BA-BEB8-7038655AEF3B"
Mime-Version: 1.0 (Mac OS X Mail 10.1 \(3251\))
Date: Thu, 15 Dec 2016 16:55:34 -0500
In-Reply-To: <61ebc3c3-557a-1be8-7205-648e1e83411c@nthpermutation.com>
To: Michael StJohns <msj@nthpermutation.com>
References: <4ab2a538-603e-4e7a-3be9-ad75ed459006@bellis.me.uk> <B192A1B3-03FF-43D1-AD30-12BBA2D65DF0@gmail.com> <9fe0e34d-51e9-bdf3-a650-d8b3681f1cd8@bellis.me.uk> <CAPt1N1=Z2xERw68-=iFGgYYnEO3eDW-8tvhmTmaf4+vU-24grQ@mail.gmail.com> <C059877D829F76429F49E0B48705D888F7FD2C7B@EXCH-01.CORP.CIRA.CA> <4A870505-070B-4065-B360-5A98485E4CEB@fugue.com> <313759CF-B72F-401D-BA26-79C214C30686@shinkuro.com> <8D7E8E5C-EC8E-46E9-9C07-947D7A7F69E3@fugue.com> <61ebc3c3-557a-1be8-7205-648e1e83411c@nthpermutation.com>
X-Mailer: Apple Mail (2.3251)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/SZ_FQ4YJb1xVpHBtK8EqZ-FT24c>
Cc: dnsop@ietf.org
Subject: Re: [DNSOP] [homenet] WGLC on "redact" and "homenet-dot"
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 15 Dec 2016 21:55:39 -0000
On Dec 15, 2016, at 4:41 PM, Michael StJohns <msj@nthpermutation.com> wrote: > The problem with providing an unsecured delegation for .homenet is that items subsidiary to .homenet become spoofable in the wider internet and that's not necessarily a good thing. It might make life easier for the homenet folks to use the unsecured .homenet local zone, but it might have adverse consequences for the non-homenet folken. Until every single zone in the DNS is signed, this problem will exist. This problem would exist if we used .home.arpa. instead of .homenet. If we want to solve this problem, it’s going to require an extension to the DNS that provides a way to mark zones of this sort. I would be more willing to fall on this sword if we actually got more security out of it, but I don’t think we do. The other thing the IETF could say to the homenet working group is simply "no, you have to solve the naming hierarchy problem on homenets, and you don’t get to have an unsigned delegation at all." But that solution would have an unreasonably large number of moving parts. I would rather see us take a step in a direction towards things working, and then based on our wish that things be more secure, make incremental steps in that direction. Those incremental steps do not now exist, and requiring any or all of them as a prerequisite for working service discovery on homenets is too much.
- [homenet] WGLC on "redact" and "homenet-dot" Ray Bellis
- Re: [homenet] WGLC on "redact" and "homenet-dot" Ralph Droms
- Re: [homenet] WGLC on "redact" and "homenet-dot" Ray Bellis
- Re: [homenet] WGLC on "redact" and "homenet-dot" Ted Lemon
- Re: [homenet] WGLC on "redact" and "homenet-dot" Ralph Droms
- Re: [homenet] WGLC on "redact" and "homenet-dot" Ted Lemon
- Re: [homenet] WGLC on "redact" and "homenet-dot" james woodyatt
- Re: [homenet] WGLC on "redact" and "homenet-dot" Ted Lemon
- Re: [homenet] WGLC on "redact" and "homenet-dot" Mark Andrews
- Re: [homenet] WGLC on "redact" and "homenet-dot" james woodyatt
- Re: [homenet] WGLC on "redact" and "homenet-dot" Ted Lemon
- Re: [homenet] WGLC on "redact" and "homenet-dot" james woodyatt
- Re: [homenet] WGLC on "redact" and "homenet-dot" Ted Lemon
- Re: [homenet] WGLC on "redact" and "homenet-dot" Ralph Droms
- Re: [DNSOP] Fwd: [homenet] WGLC on "redact" and "… Steve Crocker
- Re: [homenet] WGLC on "redact" and "homenet-dot" Ted Lemon
- Re: [homenet] WGLC on "redact" and "homenet-dot" Ralph Droms
- [DNSOP] Fwd: [homenet] WGLC on "redact" and "home… Suzanne Woolf
- Re: [DNSOP] Fwd: [homenet] WGLC on "redact" and "… Ted Lemon
- Re: [DNSOP] Fwd: [homenet] WGLC on "redact" and "… Steve Crocker
- Re: [DNSOP] Fwd: [homenet] WGLC on "redact" and "… Ted Lemon
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Steve Crocker
- Re: [DNSOP] Fwd: [homenet] WGLC on "redact" and "… Michael StJohns
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Ralph Droms
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Ray Bellis
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Steve Crocker
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Michael StJohns
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Ted Lemon
- Re: [DNSOP] Fwd: [homenet] WGLC on "redact" and "… Ted Lemon
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Ralph Droms
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Suzanne Woolf
- Re: [DNSOP] Fwd: [homenet] WGLC on "redact" and "… Jaap Akkerhuis
- Re: [DNSOP] Fwd: [homenet] WGLC on "redact" and "… Ted Lemon
- Re: [DNSOP] Fwd: [homenet] WGLC on "redact" and "… Ray Bellis
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… John Levine
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Jim Reid
- Re: [DNSOP] Fwd: [homenet] WGLC on "redact" and "… Jaap Akkerhuis
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Ray Bellis
- Re: [DNSOP] Fwd: [homenet] WGLC on "redact" and "… Ray Bellis
- Re: [DNSOP] Fwd: [homenet] WGLC on "redact" and "… Mark Andrews
- Re: [DNSOP] Fwd: [homenet] WGLC on "redact" and "… John Levine
- Re: [DNSOP] Fwd: [homenet] WGLC on "redact" and "… John Levine
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… John Levine
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Ralph Droms
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Mark Andrews
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Mark Andrews
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Ted Lemon
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Ted Lemon
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Ted Lemon
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Ted Lemon
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Ray Bellis
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Ted Lemon
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Brian Dickson
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Brian Dickson
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… John R Levine
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… John R Levine
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… John R Levine
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Ted Lemon
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… George Michaelson
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Mark Andrews
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Mark Andrews
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… John R Levine
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… John R Levine
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Juliusz Chroboczek
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Juliusz Chroboczek
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Juliusz Chroboczek
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Juliusz Chroboczek
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… John Levine
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… John Levine
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… John Levine
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Brian Dickson
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Brian Dickson
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Ted Lemon
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Ted Lemon
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Ted Lemon
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Ted Lemon
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Mark Andrews
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Mark Andrews
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Brian Dickson
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Brian Dickson
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Juliusz Chroboczek
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Juliusz Chroboczek
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Ted Lemon
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Ted Lemon
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… John R Levine
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… John R Levine
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Mark Andrews
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Mark Andrews
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Mark Andrews
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Mark Andrews
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Mark Andrews
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Mark Andrews
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Juliusz Chroboczek
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Juliusz Chroboczek
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Ted Lemon
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Ted Lemon
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Jacques Latour
- Re: [homenet] WGLC on "redact" and "homenet-dot" Jacques Latour
- Re: [homenet] [DNSOP] WGLC on "redact" and "homen… Bob Harold
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Bob Harold
- Re: [homenet] [DNSOP] WGLC on "redact" and "homen… Ray Bellis
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Ray Bellis
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Michael StJohns
- Re: [homenet] WGLC on "redact" and "homenet-dot" Ted Lemon
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Ted Lemon
- Re: [homenet] WGLC on "redact" and "homenet-dot" Suzanne Woolf
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Suzanne Woolf
- Re: [homenet] WGLC on "redact" and "homenet-dot" Andrew Sullivan
- Re: [homenet] [DNSOP] WGLC on "redact" and "homen… Steve Crocker
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Steve Crocker
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Mark Andrews
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Mark Andrews
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… james woodyatt
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… james woodyatt
- Re: [homenet] [DNSOP] WGLC on "redact" and "homen… Ted Lemon
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Ted Lemon
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Mark Andrews
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Mark Andrews
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Mark Andrews
- Re: [homenet] [DNSOP] WGLC on "redact" and "homen… Mark Andrews
- Re: [homenet] [DNSOP] WGLC on "redact" and "homen… Ted Lemon
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Ted Lemon
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… John R Levine
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… John R Levine
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Ted Lemon
- Re: [homenet] [DNSOP] Fwd: WGLC on "redact" and "… Ted Lemon
- Re: [homenet] [DNSOP] iterative vs. forwarder, wa… John R Levine
- Re: [DNSOP] [homenet] iterative vs. forwarder, wa… John R Levine
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Michael StJohns
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Ted Lemon
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Jacques Latour
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Ted Lemon
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Mark Andrews
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Suzanne Woolf
- Re: [homenet] [DNSOP] WGLC on "redact" and "homen… Suzanne Woolf
- Re: [DNSOP] [homenet] iterative vs. forwarder, wa… william manning
- Re: [homenet] [DNSOP] iterative vs. forwarder, wa… william manning
- Re: [homenet] WGLC on "redact" and "homenet-dot" Ray Bellis
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… David Conrad
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… william manning
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… David Conrad
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… william manning
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Ralf Weber
- [DNSOP] reducing the crap going to the root Jim Reid
- Re: [DNSOP] [homenet] Fwd: WGLC on "redact" and "… Shane Kerr
- Re: [DNSOP] reducing the crap going to the root Burkov Dmitry
- Re: [DNSOP] reducing the crap going to the root Jim Reid
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Stephane Bortzmeyer
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Jaap Akkerhuis
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Ted Lemon
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Mark Andrews
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Stephane Bortzmeyer
- Re: [DNSOP] [homenet] WGLC on "redact" and "homen… Jaap Akkerhuis