Re: [DNSOP] new ANAME draft: draft-hunt-dnsop-aname-00.txt

Tony Finch <dot@dotat.at> Tue, 11 April 2017 20:44 UTC

Return-Path: <dot@dotat.at>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CB7D2129A9F for <dnsop@ietfa.amsl.com>; Tue, 11 Apr 2017 13:44:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.619
X-Spam-Level:
X-Spam-Status: No, score=-2.619 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=messagingengine.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7dxFQb_JXbvW for <dnsop@ietfa.amsl.com>; Tue, 11 Apr 2017 13:44:21 -0700 (PDT)
Received: from out1-smtp.messagingengine.com (out1-smtp.messagingengine.com [66.111.4.25]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 199B2128D6F for <dnsop@ietf.org>; Tue, 11 Apr 2017 13:44:21 -0700 (PDT)
Received: from compute4.internal (compute4.nyi.internal [10.202.2.44]) by mailout.nyi.internal (Postfix) with ESMTP id 890C320CFF; Tue, 11 Apr 2017 16:44:20 -0400 (EDT)
Received: from frontend1 ([10.202.2.160]) by compute4.internal (MEProxy); Tue, 11 Apr 2017 16:44:20 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-sender:x-me-sender:x-sasl-enc:x-sasl-enc; s= fm1; bh=sKmD0JT+qeVWMwZYuINpvT8yy4aN+VqU7yJ5NM2UpjY=; b=OueKI8tg +Qc8Vi7VMpg6gOgqGI98o+dulJlgSUwxZaHGkp8dLDie4IQb2H1ASoOFM2kaDco/ BSfOfgBZf6Pd5MGuIS0T6PqKpDiW4kyh8zqjQWbp26fY8e09htvFUnLm+oyUBBUt Ta9EzVL3CeBnpxJuk+bUpf31834rL5bD1b0Yci95bihzBXi4biOPPenDwaLhGr8Y lWfJR9dDJEFO6bpT9g0JFIP1J9KtPVBZ6dY+1llQm7z6yxZzrMrzHMvxCdLSxLR8 z/DSbwVfvt2oW1NvNbG+0JfhJcQd5jSDswqc80JYHkwyiIRrxpQBJfOgstMgZbgN NYLq7W1bvPQwmg==
X-ME-Sender: <xms:JEDtWPLqCE7EWE0qmSft6rHRZ42LgVL1qkl9daJFXFvWjv71Ac2PGQ>
X-Sasl-enc: Rdps3zGJhK1hXrBeyoLxjlmwkWb6E6u6c9ezHQzjEu6y 1491943460
Received: from [192.168.1.69] (unknown [195.147.34.210]) by mail.messagingengine.com (Postfix) with ESMTPA id 3D5677E6B1; Tue, 11 Apr 2017 16:44:20 -0400 (EDT)
Content-Type: text/plain; charset=us-ascii
Mime-Version: 1.0 (1.0)
From: Tony Finch <dot@dotat.at>
X-Mailer: iPhone Mail (14D27)
In-Reply-To: <b4663aaa-dfb2-60d5-0a59-7b6410d927e6@redhat.com>
Date: Tue, 11 Apr 2017 21:44:18 +0100
Cc: Paul Wouters <paul@nohats.ca>, dnsop <dnsop@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <8676C98D-B369-41C5-AB1E-A7F3F4C871E5@dotat.at>
References: <20170407181139.GB66383@isc.org> <cc3bbc7a-3f48-2f7f-a3d9-3f752874fc00@redhat.com> <alpine.DEB.2.11.1704111641290.4393@grey.csi.cam.ac.uk> <alpine.LRH.2.20.999.1704111147390.8670@bofh.nohats.ca> <alpine.DEB.2.11.1704111928520.4393@grey.csi.cam.ac.uk> <763184bf-06ec-8320-07ff-9117b08cc509@redhat.com> <CC41BD92-4151-4A28-9D7D-EFF9978822A2@dotat.at> <fac97c1e-325a-e9ef-3681-c01782bb3c4e@redhat.com> <F5CDCCDF-615A-4A25-B98E-C8D34FE72CD0@dotat.at> <b4663aaa-dfb2-60d5-0a59-7b6410d927e6@redhat.com>
To: Florian Weimer <fweimer@redhat.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/SavcPk3922X3TRGjAoVI-9y9nK0>
Subject: Re: [DNSOP] new ANAME draft: draft-hunt-dnsop-aname-00.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Apr 2017 20:44:23 -0000

> On 11 Apr 2017, at 21:20, Florian Weimer <fweimer@redhat.com> wrote:
>> On 04/11/2017 10:15 PM, Tony Finch wrote:
>> 
>> In many cases the ANAME target will be a mass web hosting provider which doesn't have any flexibility in their DNS setup.
> 
> And in order to accommodate them, we upgrade the DNS server infrastructure across the Internet?

No.

We are working around a design error in the way CNAMEs work within the DNS. Rather than making a narrow-minded bodge that only works for one special case, we should fix the general case. All that is required is to make ANAMEs work anywhere, just like the vast majority of other RRtypes.

>> And you still don't want CNAME pointing at MX because of the interop problems.
> 
> CNAME to MX is fine.

No it isn't, because it causes mail domain rewrites.

Tony.
-- 
f.anthony.n.finch  <dot@dotat.at>  http://dotat.at