IETF Logo Mail Archive

Re: [DNSOP] Last Call: <draft-ietf-dnsop-no-response-issue-14.txt> (A Common Operational Problem in DNS Servers - Failure To Communicate.) to Best Current Practice

Warren Kumari <warren@kumari.net> Fri, 20 December 2019 01:29 UTC

Return-Path: <warren@kumari.net>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 327C712008D for <dnsop@ietfa.amsl.com>; Thu, 19 Dec 2019 17:29:02 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=kumari-net.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bZSoPupZeYr9 for <dnsop@ietfa.amsl.com>; Thu, 19 Dec 2019 17:28:59 -0800 (PST)
Received: from mail-qk1-x743.google.com (mail-qk1-x743.google.com [IPv6:2607:f8b0:4864:20::743]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2F7C2120044 for <dnsop@ietf.org>; Thu, 19 Dec 2019 17:28:59 -0800 (PST)
Received: by mail-qk1-x743.google.com with SMTP id r14so6293797qke.13 for <dnsop@ietf.org>; Thu, 19 Dec 2019 17:28:59 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kumari-net.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=MjBbe2kaM+Dud98ba+EAIr8k+3y4zs8JnKcEfF9qELY=; b=X/RWgZcw2BBDQHkZ29BPPQV2URhnJ9Xkce4pZNNKRJFJqs0PB4rHU7TsBTUzFpHx3y TGRXe2E0XVfDYQ3MZ4pa3HR4SBSMK0QjvqYzxSokhrMNyxqyps7xBT6PVIIoLU6DAao5 0chEVP6cuqJ7BIacX6Pk+Un8adUY20cQce4q81KXQdk9MLHvLV2sTjCkXbHLfieLFVqY y9sBnrNk8hBs4bIh7Iuxz2qp9QF/JgmJOpeB6XDkWZ35sznWy8fBaGYKjE+sEc90l9Yw IvjCDaJIk2yW2b1f6gv01ZLGFy9vzeIdPGxWeJT+oXHwUmgCYR1e/B/MLFjm9u85oCLh e5Vg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=MjBbe2kaM+Dud98ba+EAIr8k+3y4zs8JnKcEfF9qELY=; b=KiILtFBbBTSEIgWhfsQ5Eu5ZykyUWfE0NyPfsDG34OgmjZ4J+sAdf+hdtbmc/z0TBf oIIHo73Ryd8Qe9LASnCT1TsuvRia2vHxlzrVb/rg7SVMP+bar0bh0RJ9JvekR4FAg42p 0ulmdkDzFtLT2McAsFqHDcZeeJ2U8alnu7BeEXsc5KJZPMZQLR5sSUjAadI1zKcqsZqm 58B0lNz//i2Wmd/+cBB50QSQOujcAoquacpIcU1kunhYCMqSlvhsjB6c3Z+1UpWWegtd amie2vW4u1fxg7iPht17Vkw0i6KrihEVe7Hhppb2Sp71Z5nNCMFUSt2yeFDqmdfJyO2m apRg==
X-Gm-Message-State: APjAAAXwhGHUsdUTyQPcUpTc9mM1CNSKiSmCSKS4UFo0udqAecsFwKyp tNIrdwa8bFGH+JzQn4QFzwqbWqpaJaOJho1aFotIGQ==
X-Google-Smtp-Source: APXvYqzgqyLKQpqP/FwNG6YMBhAhQH6nG4T5lkEMpwYkfjlxMfQIM6kHnTHzqqv7HlwbgdmZ6kbSyUI+ZT07621ia2E=
X-Received: by 2002:a37:a406:: with SMTP id n6mr11441367qke.63.1576805337919; Thu, 19 Dec 2019 17:28:57 -0800 (PST)
MIME-Version: 1.0
References: <157559763911.16433.13149772616705852561.idtracker@ietfa.amsl.com>
In-Reply-To: <157559763911.16433.13149772616705852561.idtracker@ietfa.amsl.com>
From: Warren Kumari <warren@kumari.net>
Date: Thu, 19 Dec 2019 20:28:22 -0500
Message-ID: <CAHw9_iJusBODpYOgmZ7q7mhED7wz9_PsF2nZSYN+DWyUBSVPRw@mail.gmail.com>
To: draft-ietf-dnsop-no-response-issue@ietf.org
Cc: DNSOP-Chairs <dnsop-chairs@ietf.org>, dnsop <dnsop@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/UzSRmcq9VwzSz8H983K-Hu89DRo>
Subject: Re: [DNSOP] Last Call: <draft-ietf-dnsop-no-response-issue-14.txt> (A Common Operational Problem in DNS Servers - Failure To Communicate.) to Best Current Practice
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 20 Dec 2019 01:29:02 -0000

[ Note: CC list edited ]

Hi there authors,

During the IETF LC Stephane supported the document (an important
document, worthy of publication), but noted that:
1: the document only deals with auth servers and that it should be
more explicit and
2: that Section 3 is confusing, and that Matt had provided some text
which helps make this better --
https://mailarchive.ietf.org/arch/msg/dnsop/_Nq8PAVOapIVal2BS7P-jlWmnuc

Having reread section 3 (and Matt's suggestions) I agree with Stephane
on both of these - I also think that addressing these should be quite
easy (I don't think it requires a "restructuring"), especially as Matt
has provided suggested text...
I'd appreciate if you can address these, and SHOUT LOUDLY once you've
had a chance to do so (or let me know how else you'd like to handle
this).

I also think that it would be worth adding an Acknowledgements section...

Thanks,
W



On Thu, Dec 5, 2019 at 9:00 PM The IESG <iesg-secretary@ietf.org> wrote:
>
>
> The IESG has received a request from the Domain Name System Operations WG
> (dnsop) to consider the following document: - 'A Common Operational Problem
> in DNS Servers - Failure To Communicate.'
>   <draft-ietf-dnsop-no-response-issue-14.txt> as Best Current Practice
>
> The IESG plans to make a decision in the next few weeks, and solicits final
> comments on this action. Please send substantive comments to the
> last-call@ietf.org mailing lists by 2019-12-19. Exceptionally, comments may
> be sent to iesg@ietf.org instead. In either case, please retain the beginning
> of the Subject line to allow automated sorting.
>
> Abstract
>
>
>    The DNS is a query / response protocol.  Failing to respond to
>    queries, or responding incorrectly, causes both immediate operational
>    problems and long term problems with protocol development.
>
>    This document identifies a number of common kinds of queries to which
>    some servers either fail to respond or else respond incorrectly.
>    This document also suggests procedures for zone operators to apply to
>    identify and remediate the problem.
>
>    The document does not look at the DNS data itself, just the structure
>    of the responses.
>
>
>
>
> The file can be obtained via
> https://datatracker.ietf.org/doc/draft-ietf-dnsop-no-response-issue/
>
> IESG discussion can be tracked via
> https://datatracker.ietf.org/doc/draft-ietf-dnsop-no-response-issue/ballot/
>
>
> No IPR declarations have been submitted directly on this I-D.
>
>
> The document contains these normative downward references.
> See RFC 3967 for additional information:
>     rfc6840: Clarifications and Implementation Notes for DNS Security (DNSSEC) (Proposed Standard - IETF stream)
>     rfc3225: Indicating Resolver Support of DNSSEC (Proposed Standard - IETF stream)
>     rfc7766: DNS Transport over TCP - Implementation Requirements (Proposed Standard - IETF stream)
>     rfc4035: Protocol Modifications for the DNS Security Extensions (Proposed Standard - IETF stream)
>
>
>


-- 
I don't think the execution is relevant when it was obviously a bad
idea in the first place.
This is like putting rabid weasels in your pants, and later expressing
regret at having chosen those particular rabid weasels and that pair
of pants.
   ---maf

v2.23.0 | Report a Bug | By Email