IETF Logo Mail Archive

Re: [DNSOP] DNS for Cloud Resources in draft-ietf-rtgwg-net2cloud-problem-statement-08

Morizot Timothy S <Timothy.S.Morizot@irs.gov> Wed, 11 March 2020 18:38 UTC

Return-Path: <Timothy.S.Morizot@irs.gov>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1D60C3A1117 for <dnsop@ietfa.amsl.com>; Wed, 11 Mar 2020 11:38:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.101
X-Spam-Level:
X-Spam-Status: No, score=-2.101 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FROM_GOV_DKIM_AU=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=irs.gov
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NmKNW3eX5Iok for <dnsop@ietfa.amsl.com>; Wed, 11 Mar 2020 11:38:56 -0700 (PDT)
Received: from EMG6.irs.gov (emg6.irs.gov [IPv6:2610:30:2000:25::92]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7A8C33A1112 for <dnsop@ietf.org>; Wed, 11 Mar 2020 11:38:54 -0700 (PDT)
X-IronPort-AV: E=Sophos;i="5.70,541,1574143200"; d="scan'208";a="265950101"
Received: from unknown (HELO mtb0120img1.mcc.irs.gov) ([10.219.201.80]) by mem0200emg6.tcc.irs.gov with ESMTP; 11 Mar 2020 13:38:52 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=irs.gov; l=856; q=dns/txt; s=irs-20171230; t=1583951932; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; z=From:=20Morizot=20Timothy=20S=20<Timothy.S.Morizot@irs.g ov>|To:=20"Hollenbeck,=20Scott"=20<shollenbeck=3D40verisi gn.com@dmarc.ietf.org>,=0D=0A=09"linda.dunbar@futurewei.c om"=20<linda.dunbar@futurewei.com>|CC:=20"dnsop@ietf.org" =20<dnsop@ietf.org>|Subject:=20RE:=20DNS=20for=20Cloud=20 Resources=20in=0D=0A=20draft-ietf-rtgwg-net2cloud-problem -statement-08|Date:=20Wed,=2011=20Mar=202020=2018:38:51 =20+0000|Message-ID:=20<a705580021d54beaa88a7d1cf82299e2@ irs.gov>|References:=20<a88c3dbefb2346239a4be8c11f37695f@ verisign.com>|In-Reply-To:=20<a88c3dbefb2346239a4be8c11f3 7695f@verisign.com>|Content-Transfer-Encoding:=20quoted-p rintable|MIME-Version:=201.0; bh=+hZ7ANhoNLZdXfKDiGn9rM2l6FcOcVF+Saua1Dgvhmk=; b=HsF44gGhTnM3FgBCfmhu8qrnG5etfudWWQuji2tXMbNhm3/kzA0azsoc F+9KvrMv9UwS40OmvOa56zWNg3QWbHcZez880VY0Rf6OI9aavT8mMMVfD I1xyvZ4xYtiAjw2AzhFwBSWIbtI9e0Ewi+ugk7VMrwCFV1rD2jTk0SU0A LDdCRVINhuj5Kvxd6Pa4lhmEeqc6LuhsIoJ4QrmvFPPt4NGm+vj1ikrG4 e8Op34RBQJuDi+CZFIB7jihugkvrfmNCMCCyzmc12fehsIRglt/8QoZiT gedJJeNmHl/Yjx4+LbLpQ1gDV22TbWzUX7+FScCT7++4uUZmFqRw2etX6 A==;
Received: from mtb0120ppexh070.ds.irsnet.gov ([10.207.136.85]) by mtb0120img1.mcc.irs.gov with ESMTP/TLS/AES256-GCM-SHA384; 11 Mar 2020 18:38:52 +0000
Received: from MTB0120PPEXH050.ds.irsnet.gov (10.207.136.83) by MTB0120PPEXH070.ds.irsnet.gov (10.207.136.85) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1913.5; Wed, 11 Mar 2020 14:38:51 -0400
Received: from MTB0120PPEXH050.ds.irsnet.gov ([fe80::9de0:134:e3b8:a42d]) by MTB0120PPEXH050.ds.irsnet.gov ([fe80::9de0:134:e3b8:a42d%15]) with mapi id 15.01.1913.005; Wed, 11 Mar 2020 14:38:51 -0400
From: Morizot Timothy S <Timothy.S.Morizot@irs.gov>
To: "Hollenbeck, Scott" <shollenbeck=40verisign.com@dmarc.ietf.org>, "linda.dunbar@futurewei.com" <linda.dunbar@futurewei.com>
CC: "dnsop@ietf.org" <dnsop@ietf.org>
Thread-Topic: DNS for Cloud Resources in draft-ietf-rtgwg-net2cloud-problem-statement-08
Thread-Index: AdX30T1GApKjttEGSSWK9TMIh4QhbwAAumgw
Date: Wed, 11 Mar 2020 18:38:51 +0000
Message-ID: <a705580021d54beaa88a7d1cf82299e2@irs.gov>
References: <a88c3dbefb2346239a4be8c11f37695f@verisign.com>
In-Reply-To: <a88c3dbefb2346239a4be8c11f37695f@verisign.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.219.81.204]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/WxTT-8qjwn-Mg_mF7jeKQku0qa4>
Subject: Re: [DNSOP] DNS for Cloud Resources in draft-ietf-rtgwg-net2cloud-problem-statement-08
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 11 Mar 2020 18:38:58 -0000

Yes, I believe that suggestion is much stronger and expresses the intent and meaning better.

Thanks,

Scott

-----Original Message-----
From: DNSOP <dnsop-bounces@ietf.org> On Behalf Of Hollenbeck, Scott
Sent: Wednesday, March 11, 2020 1:19 PM
To: linda.dunbar@futurewei.com
Cc: dnsop@ietf.org
Subject: [DNSOP] DNS for Cloud Resources in draft-ietf-rtgwg-net2cloud-problem-statement-08

Could we make the last sentence stronger, perhaps with a statement like this from the US CERT WPAD Name Collision Vulnerability alert dated May 23, 2016?

"Globally unique names do prevent any possibility of collision at the present or in the future and they make DNSSEC trust manageable. Consider using a registered and fully qualified domain name (FQDN) from global DNS as the root for enterprise and other internal namespaces."

v2.23.0 | Report a Bug | By Email