IETF Logo Mail Archive

Re: [DNSOP] Proposal: Whois over DNS

John Bambenek <jcb@bambenekconsulting.com> Wed, 10 July 2019 12:41 UTC

Return-Path: <jcb@bambenekconsulting.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3A1B7120336 for <dnsop@ietfa.amsl.com>; Wed, 10 Jul 2019 05:41:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.299
X-Spam-Level:
X-Spam-Status: No, score=-4.299 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=bambenekconsulting.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oOFI5GthfoyT for <dnsop@ietfa.amsl.com>; Wed, 10 Jul 2019 05:41:28 -0700 (PDT)
Received: from chicago.bambenekconsulting.com (chicago.bambenekconsulting.com [99.198.96.122]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 75105120309 for <dnsop@ietf.org>; Wed, 10 Jul 2019 05:41:28 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=bambenekconsulting.com; s=default; h=To:References:Message-Id: Content-Transfer-Encoding:Cc:Date:In-Reply-To:From:Subject:Mime-Version: Content-Type:Sender:Reply-To:Content-ID:Content-Description:Resent-Date: Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=mgZd3unZlJd8UYT2GE2U4GiTufiQ2P95SDGJLuIbQiM=; b=AUzY6JfMNUnyc1YeZWahbVFWa jRymPk+Pp7OcKfJEjaob9aENeSnrVJyYVHxV2kVJhndLxjy3Z/Nht7jLkhG1NeRRO8qRL/LAkUTxE Mng9QbThC5M8B40Qv2Kb63jZ6q46AljMlpRVt049a5GQJAqKsoeu7ndZlFzdd4HHuIr6I=;
Received: from c-67-167-98-187.hsd1.il.comcast.net ([67.167.98.187]:56610 helo=[192.168.11.181]) by chicago.bambenekconsulting.com with esmtpsa (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256) (Exim 4.92) (envelope-from <jcb@bambenekconsulting.com>) id 1hlBuW-0006vx-5N; Wed, 10 Jul 2019 08:41:24 -0400
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (1.0)
From: John Bambenek <jcb@bambenekconsulting.com>
X-Mailer: iPhone Mail (16F203)
In-Reply-To: <6F0B44AA-902D-46E9-9E3B-DB88F5AC1419@isc.org>
Date: Wed, 10 Jul 2019 07:41:23 -0500
Cc: Joe Abley <jabley@hopcount.ca>, dnsop@ietf.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <A7A3C5BB-2705-47F2-9870-19552756423B@bambenekconsulting.com>
References: <1CA7BF1B-DF50-443B-9219-55259835FE23@bambenekconsulting.com> <233E0AD8-97FE-466C-9B6C-D7A376031C3B@rfc1035.com> <93244821-6C22-457F-BA06-CF43CA9FD12B@bambenekconsulting.com> <EDE98437-E0B8-4B2E-8AA5-2F6B0079CE8B@hopcount.ca> <0ece2408-a1ec-fa5f-f8d1-ff65572de1ed@bambenekconsulting.com> <B520D17D-F258-41C3-97DD-3CE5C3A8E952@hopcount.ca> <6F0B44AA-902D-46E9-9E3B-DB88F5AC1419@isc.org>
To: Mark Andrews <marka@isc.org>
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - chicago.bambenekconsulting.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - bambenekconsulting.com
X-Get-Message-Sender-Via: chicago.bambenekconsulting.com: authenticated_id: jcb@bambenekconsulting.com
X-Authenticated-Sender: chicago.bambenekconsulting.com: jcb@bambenekconsulting.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/Sopa0iv3_rIDEL9jvbxNpoKMw0o>
Subject: Re: [DNSOP] Proposal: Whois over DNS
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 10 Jul 2019 12:41:38 -0000

I’m not sure the point aside of illustrating if there is no response for the domain records by the auth server that there would also be no response for a _whois record. That’s true. 

1) Using _whois is completely optional, like SPF or any other record. 
2) I can’t envision much legitimate need to contact a domain owner for something that doesn’t exist (aside of domain renewal spam or trying to buy the domain). 

Am I missing something?

—
John Bambenek

On July 1st, 2019, my DGA feeds are converting to a CC-BY-NC-SA 4.0 license which means commercial use will require a license. Contact sales@bambenekconsulting.com for details

On Jul 10, 2019, at 01:16, Mark Andrews <marka@isc.org> wrote:

> Take activedisplay.org.uk.  The DNS server for this zone has a broken
> DNS COOKIE implementation (see the mismatch between the request cookie and
> the response cookie).
> 
> COOKIE: 5dc8e2253d5f2702 
> COOKIE: e0d5650141611e0110474b0003000000dce86501ad361e01
> 
> % dig ns1.activedisplay.org.uk @88.208.234.46 +qr
> 
> ; <<>> DiG 9.15.1 <<>> ns1.activedisplay.org.uk @88.208.234.46 +qr
> ;; global options: +cmd
> ;; Sending:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 18721
> ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
> 
> ;; OPT PSEUDOSECTION:
> ; EDNS: version: 0, flags:; udp: 4096
> ; COOKIE: 5dc8e2253d5f2702
> ;; QUESTION SECTION:
> ;ns1.activedisplay.org.uk.    IN    A
> 
> ;; QUERY SIZE: 65
> 
> ;; Warning: Client COOKIE mismatch
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 18721
> ;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2
> ;; WARNING: recursion requested but not available
> 
> ;; OPT PSEUDOSECTION:
> ; EDNS: version: 0, flags:; udp: 4096
> ; COOKIE: e0d5650141611e0110474b0003000000dce86501ad361e01 (bad)
> ;; QUESTION SECTION:
> ;ns1.activedisplay.org.uk.    IN    A
> 
> ;; ANSWER SECTION:
> ns1.activedisplay.org.uk. 86400    IN    A    88.208.234.46
> 
> ;; AUTHORITY SECTION:
> activedisplay.org.uk.    86400    IN    NS    ns1.activedisplay.org.uk.
> activedisplay.org.uk.    86400    IN    NS    ns2.activedisplay.org.uk.
> 
> ;; ADDITIONAL SECTION:
> ns2.activedisplay.org.uk. 86400    IN    A    88.208.234.46
> 
> ;; Query time: 332 msec
> ;; SERVER: 88.208.234.46#53(88.208.234.46)
> ;; WHEN: Wed Jul 10 15:31:53 AEST 2019
> ;; MSG SIZE  rcvd: 145
> 
> % 
> 
> Whois is useless
> 
>    Domain name:
>        activedisplay.org.uk
> 
>    Data validation:
>        Nominet was able to match the registrant's name and address against a 3rd party data source on 20-Jun-2015
> 
>    Registrar:
>        Fasthosts Internet Ltd [Tag = LIVEDOMAINS]
>        URL: http://www.fasthosts.co.uk
> 
>    Relevant dates:
>        Registered on: 20-Jul-2011
>        Expiry date:  20-Jul-2020
>        Last updated:  20-Jun-2019
> 
>    Registration status:
>        Registered until expiry date.
> 
>    Name servers:
>        ns1.activedisplay.org.uk  88.208.234.46
>        ns2.activedisplay.org.uk  88.208.234.46
> 
>    WHOIS lookup made at 06:50:41 10-Jul-2019
> 
> There is no web site.
> 
> The registrar’s web site is useless.
> 
> The SOA contact is a Compuserve email address which hasn’t yet bounced.
> Time will tell.
> 
> Mark
> 
>> On 10 Jul 2019, at 1:07 am, Joe Abley <jabley@hopcount.ca> wrote:
>> 
>> Hi John,
>> 
>>> On 9 Jul 2019, at 10:36, John Bambenek <jcb@bambenekconsulting.com> wrote:
>>> 
>>> If the proposal is to create a standard by which to put contact
>>> information into DNS records, what venue would you suggest?
>> 
>> I think that the protocol aspects of this are the least difficult ones. If this is fundamentally the data governance issue that I think it is, I think it would make a lot more sense to align exactly with what is happening in RDAP, treating self-publication as a new profile and DNS as a possible transport. If there's data to publish, thinking about transport afterwards seems far more sensible than inventing a transport and hoping that the data will follow.
>> 
>> RDAP profiles are not being discussed in the IETF. I think this is a feature.
>> 
>>>> I also agree that without any widespread incentive to implement, test and maintain, the data is going to be noisy and sparse to the point where it's useless for any practical use anyway.
>>> 
>>> You could say the same for SPF.
>> 
>> There's an operational incentive to publish SPF records: the need for recipients to accept legitimate mail that is being sent. I don't know what the operational incentive is to publish "whois" data in zone files.
>> 
>> 
>> Joe
>> _______________________________________________
>> DNSOP mailing list
>> DNSOP@ietf.org
>> https://www.ietf.org/mailman/listinfo/dnsop
> 
> -- 
> Mark Andrews, ISC
> 1 Seymour St., Dundas Valley, NSW 2117, Australia
> PHONE: +61 2 9871 4742              INTERNET: marka@isc.org
>

v2.23.0 | Report a Bug | By Email