IETF Logo Mail Archive

Re: [DNSOP] [Ext] WGLC rfc8499bis one week extension for lame delegation definition

"Wessels, Duane" <dwessels@verisign.com> Mon, 01 May 2023 16:43 UTC

Return-Path: <dwessels@verisign.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E3C73C14CE51 for <dnsop@ietfa.amsl.com>; Mon, 1 May 2023 09:43:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=verisign.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YajA8iZTDiAU for <dnsop@ietfa.amsl.com>; Mon, 1 May 2023 09:43:13 -0700 (PDT)
Received: from mail6.verisign.com (mail6.verisign.com [69.58.187.32]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7DF25C14CE45 for <dnsop@ietf.org>; Mon, 1 May 2023 09:43:13 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=verisign.com; l=4980; q=dns/txt; s=VRSN; t=1682959394; h=from:to:cc:date:message-id:references:in-reply-to: content-id:content-transfer-encoding:mime-version:subject; bh=DR3HfG6Wqi7468vFtRqgdr2SZESE3p65xsfV5lEam/o=; b=XQZfFw6A5j7mOixpvEilPAw+jvkt9GzLs/lny2aNpnVy1Y8atHC7apG/ 5I8mwJ4YDRKkXgV2dOnNTD89Tp91rQvJ0Hvw7zNMhA8w58d5dBxEtpI0L 6q4O9yvlpZ0w9twTShKqYqRgj3XSZJWDvkDtDKlD7bUKFtQwpkY4/I6kK V7L7SWFxM9e7MfEhSBvzJKcnRM1FUkTWKtI+H2JM7ZKEsqGepPwJTSN71 jK5EWkaRctJMXEJUC3V00N4XjLbsruYKjy3bYp6p/7aFnjIlj1hcXWnDJ 5hrODP8sKP1ikGpuzDprxUF9AvHZNlEq3Lj7j/cZRcokRi6e9rSdbV48s Q==;
IronPort-Data: A9a23:WunDmKyERMI0EY83wEt6t+dZxyrEfRIJ4+MujC+fZmUNrF6WrkVVn WEcDWHTOPmLYGfwfdB1OoXi9BhS6sXQyIdmT1M6/C00HyNBpPSeCIXCJC8cHc8wwu7rFxs7s ppEOrEsCOhuExcwcz/0auCJQUFUjP3OHPykYAL9EngZbRd+Tys8gg5Ulec8g4p56fC0GArlV ena+qUzA3f4nW8lWo4ow/jb8kg34ayr4GpwUmEWPpingnePzxH5M7pCfcldH1OgKqFIE+izQ fr0zb3R1gs1KD90V7tJOp6iGqE7aua60Tqm0xK6aID76vR2nRHe545gXBYqQRwO12jWxYAZJ OJl7vRcQS9xVkHFsLpFD0kAS0mSN4UekFPMCSDXXcB+UyQq2pYjqhljJBheAGEWxgp4KUtN0 qMDBT4fVxSkpOe5npiAesRdhv12eaEHPKtH0p1h5RvjK68ZZ73zG/yM+9Rfxi92j8wIA+zFY YwSbj8HgBboOkUJYwhMTstjx6H01hETcBUBwL6RjaYo7nPIwQhq+KbgKtvOe9OMA85Smy50o 0qcpj6iXkhLa7RzzxKor33xoNL1whjHd4IrGYWY+P1urESqkzl75Bo+EAHTTeOCola3RtYZK 0sa9C8nq4Az/0WtSJ/6RRLQiHKCpRkEc9tdD+N87xuCopc4+C6THG5dUThMeIR/8dQoX3ov1 0TMldSvDyZp6fuLU2mbsLyTqFteJBQoEIPLXgdcJSNt3jUpiNhbYs7nJjq7LJOIsw==
IronPort-HdrOrdr: A9a23:YKZ4faE9F+nczbEPpLqENceALOsnbusQ8zAXPidKOHlom62j5q KTdZsgtSMc5Ax+ZJhCo7+90cC7KBvhHPVOkOos1NmZPTXOiS+HIIZv9oP+zzClMD2WzIJg/J YlV6RlEtX/ARxZgdaS2mOFOudl5NWc6qiniaPl0nF3QWhRBp1I9QtjFQqBKEFwSTRHAZZRLv Gh2vY=
X-Talos-CUID: 9a23:sgEAE290Kz0L+DHNmBqVv2QXPZ8+X3PP9XP3AEq3V0xSeJCkSWbFrQ==
X-Talos-MUID: 9a23:/WzcEQaDMuFd/uBTmmLj2RdfDphT34uuMU01sZsFv+WdDHkl
X-IronPort-AV: E=Sophos;i="5.99,241,1677560400"; d="scan'208";a="21234197"
Received: from BRN1WNEX01.vcorp.ad.vrsn.com (10.173.153.48) by BRN1WNEX01.vcorp.ad.vrsn.com (10.173.153.48) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2507.23; Mon, 1 May 2023 12:43:11 -0400
Received: from BRN1WNEX01.vcorp.ad.vrsn.com ([10.173.153.48]) by BRN1WNEX01.vcorp.ad.vrsn.com ([10.173.153.48]) with mapi id 15.01.2507.023; Mon, 1 May 2023 12:43:11 -0400
From: "Wessels, Duane" <dwessels@verisign.com>
To: Paul Hoffman <paul.hoffman@icann.org>
CC: DNSOP Working Group <dnsop@ietf.org>
Thread-Topic: [EXTERNAL] [DNSOP] [Ext] WGLC rfc8499bis one week extension for lame delegation definition
Thread-Index: AQHZfEwEn+nieFl8tUePB69ULEN9Lg==
Date: Mon, 01 May 2023 16:43:11 +0000
Message-ID: <B93A0E80-08F8-4FDB-81C2-47C465D8DDB4@verisign.com>
References: <f5757414-dd3b-8a09-f945-d73cecf556a3@NLnetLabs.nl> <40C193AF-938C-418F-924E-94F4DD358164@icann.org>
In-Reply-To: <40C193AF-938C-418F-924E-94F4DD358164@icann.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3696.120.41.1.3)
x-originating-ip: [10.170.148.18]
Content-Type: text/plain; charset="utf-8"
Content-ID: <7818A4FC80CE3D43B929B9AB7AD428DB@verisign.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/WU4N43Evj-OwUubo_5dLUjFY08s>
Subject: Re: [DNSOP] [Ext] WGLC rfc8499bis one week extension for lame delegation definition
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 01 May 2023 16:43:18 -0000

My preferred definition is the one originally given by Paul Vixie, amended by myself, and further amended by Peter Thomassen:

A lame delegation is said to exist when one or more authoritative
servers designated by the delegating NS rrset or by the child's apex NS
rrset answers non-authoritatively for a zone.

I don’t think it is perfect, but it is an improvement.  I don’t think perfection will be achievable.  

IMO “[or not at all]” does not belong in the definition.  I don’t think we should allow timeouts to be confused for or considered as lame delegation.

If something like the above definition is adopted then the document can note there is some historical lack of agreement or consistency in use of the term.

DW
 


> On May 1, 2023, at 9:09 AM, Paul Hoffman <paul.hoffman@icann.org> wrote:
> 
> Caution: This email originated from outside the organization. Do not click links or open attachments unless you recognize the sender and know the content is safe. 
> 
> It would be grand if a bunch more people would speak up on this thread.
> 
> --Paul Hoffman, wearing my co-author hat
> 
> On Apr 27, 2023, at 1:05 PM, Benno Overeinder <benno@nlnetlabs.nl> wrote:
>> 
>> Dear WG,
>> 
>> The WGLC was closed for draft-ietf-dnsop-rfc8499bis, and the discussion
>> on lame delegation did not find consensus, but two specific suggestions
>> were put forward.  We would like to include one of them in rfc8499bis if
>> we can get consensus to do so.
>> 
>> The chairs are seeking input on the following two suggestions:
>> 
>> * Either we leave the definition of “lame delegation” as it is with the
>> comment that no consensus could be found, or
>> 
>> * alternatively, we include a shorter definition without specific
>> examples.
>> 
>> 1) Leaving the definition of lame delegation as in the current
>>  draft-ietf-dnsop-rfc8499bis, and including the addition by the
>>  authors that:
>> 
>>  "These early definitions do not match current use of the term "lame
>>  delegation", but there is also no consensus on what a lame delegation
>>  is."  (Maybe change to ... no consensus what *exactly* a lame
>>  delegation is.)
>> 
>> 2) Update the definition as proposed by Duane and with the agreement of
>>  some others (see mailing list https://secure-web.cisco.com/1X5AMTQJt2cXj7u31WPDppT_N_lSyi56z_C_stVVEipVVZkqvDApuQPa0iKxw5z8KkYh6lUYaa8WwEbu1lbUw_3U3-oCZDRWfYload0wQnMB3d76sNuzWFVBh7JB6a-2AOK0wOchJz8ErMhve7dpEUAX3u3v-rv-1jqen-3Ar6uMAJe4pFpHNVMWX8RyUI7uPYRUghgCekgBWibFm6LiPtCBLmTeUAdGkHdbCvCQ-SgAe56iNE4EwIGnrBWJTVJZlM-Dv3FrK04mE2gMsQs6HDzz40kt4871oRIkuNMadfKo/https%3A%2F%2Fmailarchive.ietf.org%2Farch%2Fmsg%2Fdnsop%2F4E1AQKGivEHtJDB85gSNhofRuyM%2F):
>> 
>>  "A lame delegation is said to exist when one or more authoritative
>>  servers designated by the delegating NS RRset or by the child's apex
>>  NS RRset answers non-authoritatively [or not at all] for a zone".
>> 
>> The chairs ask the WG to discuss these two alternative definitions of
>> the term "lame delegation".  We close the consultation period on
>> Thursday 4 May.
>> 
>> Regards,
>> 
>> Benno
> 
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://secure-web.cisco.com/1XVxOCcNMkTcMeadUBQk9SlINRiQvUqtUMpxSKIOYBnT1ERKTnDtcFN1UjyDbfzk5FQqhfy31BXnCbOKFunIXd_OgZghAR9dJnnqlAmKIktWHve95FPY6YA3UinPiPabOUAEi7sOIwtzoF6rScnH_ml4EN5VeCkDj_DbUdU1FINNiKRFrKNlopElAMuHQoV1jehl-oCQtlNNopUy_X-mm_fPAbRNsYgc4S411S5vVePb4M-3xft1EktHXfsQNSe-y_vNR947juf5DmA2OYgq3gw0Efu3o0GxuyisOZ23nNj0/https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Fdnsop

v2.23.0 | Report a Bug | By Email