Re: [DNSOP] definitions of "public DNS Service"
Andrew Campling <andrew.campling@419.consulting> Fri, 22 May 2020 15:56 UTC
Return-Path: <andrew.campling@419.consulting>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 700B23A0B71 for <dnsop@ietfa.amsl.com>; Fri, 22 May 2020 08:56:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=netorgft5189650.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id j_KRg-nUOs_9 for <dnsop@ietfa.amsl.com>; Fri, 22 May 2020 08:56:58 -0700 (PDT)
Received: from GBR01-CWL-obe.outbound.protection.outlook.com (mail-eopbgr110078.outbound.protection.outlook.com [40.107.11.78]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D4D0A3A0D1A for <dnsop@ietf.org>; Fri, 22 May 2020 08:56:44 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=PikSrP2jrc6XcLCcQbLD3bV3YvXRBLV0aqXWYog9BaTGLhUmhdyyUCunn6wT9s7OnfvPpQgDOpNX6GW9Owhsjyft/ZHtFM2ux00eij1X8RM6XubgkGNv+8rI2GiDTHnXhyeEmBl/05tB8mbv0UN0wQGorc0vGcn9HflhIXdD9jEU/4CWNaNWJepAjUND1tanE2c/Lf7jfKAhRz0dU4ZCV936p9C/yEryM5TA18hW24tfSzZU+mc5wGEqUswTi6P/ViRL80ibPhkGhZeilxlr47w7bUqJftc/mMyhSDdRz8ckF/WC6Rx3+kCUKqh2tTlyktzaMxJ/DUyz5DSQD5zyTw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Kc6YOTG+H6Akne50HRnLYqnNdi6E1sB6Crd6AVukw60=; b=nD2k5iVp3fyyUiUUhyYdAxl0mhOJ3vFZpbjxYo8u3I9l7XNxGXpFSkuAjnk3YU1q6jF7qUerMJJCJqK51ShFrbNIVMve6F2VkPrT50+vMtNVsR5jufIQPyER2sWsqF1S80GgYzn6O1ifWi9mOrPgVFUxc4njBZqKC1lZfvz29bwUvox5SOrIWLvnoT1jKry3e0CPXJ8JTSVufB8DjhfEhxVq640Kspa/TZ4feHOVpZMSyRUoFs32MjstLGw20id3NbohrcoL+NqdSbzJb9HFTeJG9j8nan2w6IFG3uKkaZ52MjIj6gdmbW8yckGFI+e9Xnl0cFg640K96bucs9SLIg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=419.consulting; dmarc=pass action=none header.from=419.consulting; dkim=pass header.d=419.consulting; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=NETORGFT5189650.onmicrosoft.com; s=selector1-NETORGFT5189650-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Kc6YOTG+H6Akne50HRnLYqnNdi6E1sB6Crd6AVukw60=; b=NP1aCyAHs/jx4P2EV49Pgp3MKshqlAQvZsVgirAxHIsAU7RfvHkZ7xgTruliOL7iIW1fkoXhVJTusvn/Z3L4rGPeCdvWAcRfshZR4nCryLg4F7N0/fcC0x14KcR2lEbxduc6F7+Gpcm1gHIjbDLBnmBsxuoRH52WCkn2TUpCN9c=
Received: from LO2P265MB0573.GBRP265.PROD.OUTLOOK.COM (2603:10a6:600:71::15) by LO2P265MB1120.GBRP265.PROD.OUTLOOK.COM (2603:10a6:600:91::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3021.27; Fri, 22 May 2020 15:56:41 +0000
Received: from LO2P265MB0573.GBRP265.PROD.OUTLOOK.COM ([fe80::683d:f224:e857:746a]) by LO2P265MB0573.GBRP265.PROD.OUTLOOK.COM ([fe80::683d:f224:e857:746a%5]) with mapi id 15.20.3000.034; Fri, 22 May 2020 15:56:41 +0000
From: Andrew Campling <andrew.campling@419.consulting>
To: Paul Vixie <paul@redbarn.org>, dnsop WG <dnsop@ietf.org>, George Kuo <george@apnic.net>
CC: George Michaelson <ggm@algebras.org>
Thread-Topic: [DNSOP] definitions of "public DNS Service"
Thread-Index: AQHWL+3aGvUjaE4STUS08wT8dS5KOai0QN8A
Date: Fri, 22 May 2020 15:56:41 +0000
Message-ID: <LO2P265MB0573E5674E005493793C6294C2B40@LO2P265MB0573.GBRP265.PROD.OUTLOOK.COM>
References: <CAKr6gn0Fqk0qNCs5wbptN+rWRBQgBKom4iiudW0V1Xrj3fmE7Q@mail.gmail.com> <2487238.otjEU5M4pH@linux-9daj>
In-Reply-To: <2487238.otjEU5M4pH@linux-9daj>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: redbarn.org; dkim=none (message not signed) header.d=none; redbarn.org; dmarc=none action=none header.from=419.consulting;
x-originating-ip: [2a00:23c4:a499:2e00:bc12:c64f:3fad:1ac0]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 18ac9aba-3180-4513-e4f6-08d7fe68b7e9
x-ms-traffictypediagnostic: LO2P265MB1120:
x-microsoft-antispam-prvs: <LO2P265MB1120F0ADB53D577D8116A913C2B40@LO2P265MB1120.GBRP265.PROD.OUTLOOK.COM>
x-ms-oob-tlc-oobclassifiers: OLM:5797;
x-forefront-prvs: 04111BAC64
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: HjCLuZrlvs5L7FAe5DsO/DUKdLvGvVF+f4NpMd/rhZLMkPEX2TrJKVNZdJyadHsAiOCzPoY8KD9CV0K1/VhFrIv9pXGA18Ic4RnSavf0/cLiw4l2ftsYXf6vx921rWH4Ay4TWhReH9aMRteF5yJiFlUTCAr6qJmbru/U931LaLPMSZnc7MLBT1y4arv/9yf7SQCTziuwxh9ZHPlloQ0F7woGyibOVfL4LyN+OBbY77QI7JnCshTm8FkfzfSpfAjEhugCJ1mXzBjh3HOv18Ma/eCyaYcOLacfp9uea9ZWrLZ1Elzbu/qoXUeaGwZarT5RUFmRNBn87+x3bzfZwg6MwOUKD5V+VjrO6wWGIG8u7kIafk0TiBR4f/Q76fsXoLFA
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:LO2P265MB0573.GBRP265.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFTY:; SFS:(39830400003)(366004)(346002)(376002)(136003)(396003)(110136005)(4326008)(6506007)(52536014)(2906002)(7696005)(186003)(316002)(64756008)(8936002)(66446008)(9686003)(86362001)(76116006)(66946007)(33656002)(44832011)(71200400001)(8676002)(66556008)(5660300002)(55016002)(66476007)(508600001)(46492006); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: 419.consulting
X-MS-Exchange-CrossTenant-Network-Message-Id: 18ac9aba-3180-4513-e4f6-08d7fe68b7e9
X-MS-Exchange-CrossTenant-originalarrivaltime: 22 May 2020 15:56:41.0628 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 9c2ced3e-7522-4755-87dc-f983abc66ec3
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: CB8Mo6ca9g36izYZdaO1DaQfzmjxPPjh7TzTNvdSMqtz7nuksb5I8+V8wU5+5RHY/+4TDFDHIXVqxa/ejiAzEeCfVfbFMStAM/j/3kDLmoE=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: LO2P265MB1120
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/selo8OQQaNv-hFgsnsuoLXZsDd0>
Subject: Re: [DNSOP] definitions of "public DNS Service"
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 May 2020 15:57:00 -0000
On Friday, 22 May 2020 02:38 Paul Vixie <paul@redbarn.org> wrote: > > On Friday, 22 May 2020 00:55:34 UTC George Michaelson wrote: >> My Colleague George Kuo asked me for definitions of public DNS >> service. not "public DNS" but the trigram "public DNS service" >> >> Colloquially we understand this reasonably well. It is in the space of >> what Google, quad9, CloudFlare and others do. The various clean DNS >> feeds people subscribe to, it is the functional role of a recursive, >> but to the public, yet somehow not the bad one of an open DNS resolver >> being abused to do DDoS: its the conscious service offering of a >> recursive/cache/forwarder in the public view, a declared intent. > > these services aren't public in any way, and should not be described as public. > they are operated privately for private purposes, and merely used by some > members of the public. I agree with Paul that the use of "public" in this context is ambiguous in meaning. Instead of "public DNS service" I'd suggest that "cloud-based DNS service" is a better fit, no doubt others will have their views too. Andrew
- Re: [DNSOP] definitions of "public DNS Service" George Michaelson
- Re: [DNSOP] definitions of "public DNS Service" Davey Song
- Re: [DNSOP] definitions of "public DNS Service" George Michaelson
- Re: [DNSOP] definitions of "public DNS Service" Joe Abley
- Re: [DNSOP] definitions of "public DNS Service" Paul Vixie
- [DNSOP] definitions of "public DNS Service" George Michaelson
- Re: [DNSOP] definitions of "public DNS Service" Andrew Campling
- Re: [DNSOP] definitions of "public DNS Service" Tony Finch
- Re: [DNSOP] definitions of "public DNS Service" Bill Woodcock
- Re: [DNSOP] definitions of "public DNS Service" dagon
- Re: [DNSOP] definitions of "public DNS Service" Paul Vixie
- Re: [DNSOP] definitions of "public DNS Service" Bill Woodcock
- Re: [DNSOP] definitions of "public DNS Service" Vittorio Bertola
- Re: [DNSOP] definitions of "public DNS Service" Paul Vixie
- Re: [DNSOP] definitions of "public DNS Service" George Michaelson