IETF Logo Mail Archive

Re: [DNSOP] fyi [Pdns-users] Please test: ALIAS/ANAME apex record in PowerDNS

Paul Vixie <paul@redbarn.org> Sun, 21 September 2014 18:37 UTC

Return-Path: <paul@redbarn.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AEE5E1A014C for <dnsop@ietfa.amsl.com>; Sun, 21 Sep 2014 11:37:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.7
X-Spam-Level:
X-Spam-Status: No, score=0.7 tagged_above=-999 required=5 tests=[HTML_IMAGE_ONLY_20=0.7, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dufF217ECXD7 for <dnsop@ietfa.amsl.com>; Sun, 21 Sep 2014 11:37:31 -0700 (PDT)
Received: from ss.vix.su (ss.vix.su [IPv6:2001:559:8000:cb::2]) (using TLSv1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 056001A032E for <dnsop@ietf.org>; Sun, 21 Sep 2014 11:37:31 -0700 (PDT)
Received: from [IPv6:2001:559:8000:cb:3cf2:7db0:1462:fe59] (unknown [IPv6:2001:559:8000:cb:3cf2:7db0:1462:fe59]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by ss.vix.su (Postfix) with ESMTPSA id 9BE0EEBC47 for <dnsop@ietf.org>; Sun, 21 Sep 2014 18:37:30 +0000 (UTC) (envelope-from paul@redbarn.org)
Message-ID: <541F1AE8.6010709@redbarn.org>
Date: Sun, 21 Sep 2014 11:37:28 -0700
From: Paul Vixie <paul@redbarn.org>
User-Agent: Postbox 3.0.11 (Windows/20140602)
MIME-Version: 1.0
To: dnsop@ietf.org
References: <20140921115222.GB16178@xs.powerdns.com>
In-Reply-To: <20140921115222.GB16178@xs.powerdns.com>
X-Enigmail-Version: 1.2.3
Content-Type: multipart/alternative; boundary="------------010507060204050809040606"
Archived-At: http://mailarchive.ietf.org/arch/msg/dnsop/Wut_C2ooDITmYpFHZf41EX9sHus
Subject: Re: [DNSOP] fyi [Pdns-users] Please test: ALIAS/ANAME apex record in PowerDNS
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 21 Sep 2014 18:37:32 -0000


> bert hubert <mailto:bert.hubert@netherlabs.nl>
> Sunday, September 21, 2014 4:52 AM
> ...
>
> PS: the above is currently not yet supported for DNSSEC domains!
>
i'd be very interested in a standards-track (interoperable; including
DNSSEC support and AXFR/IXFR) version of this feature. my hope is that
you will remove out-of-zone capability here, that is, the target of
ALIAS should have to be authority data in the same zone. this would
simplify the DNSSEC case, but more importantly, it would avoid having
authority servers make upstream queries.

if you decide to work on this, i'll contribute as at least a reviewer
and perhaps (if invited) as an editor.

-- 
Paul Vixie

v2.23.0 | Report a Bug | By Email