Re: [DNSOP] Updated NSEC5 protocol spec and paper

Phillip Hallam-Baker <phill@hallambaker.com> Fri, 10 March 2017 18:33 UTC

Return-Path: <hallam@gmail.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 18A061296A6 for <dnsop@ietfa.amsl.com>; Fri, 10 Mar 2017 10:33:04 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.669
X-Spam-Level:
X-Spam-Status: No, score=-1.669 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FREEMAIL_FORGED_FROMDOMAIN=0.229, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id L3fXt8TuhCVg for <dnsop@ietfa.amsl.com>; Fri, 10 Mar 2017 10:33:03 -0800 (PST)
Received: from mail-yw0-x229.google.com (mail-yw0-x229.google.com [IPv6:2607:f8b0:4002:c05::229]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BA1141296A3 for <dnsop@ietf.org>; Fri, 10 Mar 2017 10:33:03 -0800 (PST)
Received: by mail-yw0-x229.google.com with SMTP id p77so29032862ywg.1 for <dnsop@ietf.org>; Fri, 10 Mar 2017 10:33:03 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc; bh=rX3i6sT8AZGoZvEuVdiuJpmbeV3H6ksvQSNq2OoKCZw=; b=eLn/YxvYjYliBP1HKYL7SutLnK/MLNRU2REdtUGtXVuWBet+UFobLvDKrdY59aHsP5 XP/eyBB6mBWlPFsHQ5dwghJIKM3HvczU+BIvTnAr5jzAkuFPy8UrWG3ejRnZlkgnk1pj t7aRmfubCxtOdtKJU0nD1PixNd1ovuiu3WOTCAjfKKiyQNP+wcvwNjseRCaeHp2Elh9t ks0ZsGSuEfgze03TqMsBh6hkxZ+m5XtIXsShO6Fw6SckAkx5o+ybABHrNirRGpx94m7y IBQLYyFCqkYEhLsAWvou6/i2PCRZC9tPEAr27UEx0uImRR5gWO2TDgzm9HH4XHoCMhW7 kmPA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:sender:in-reply-to:references:from :date:message-id:subject:to:cc; bh=rX3i6sT8AZGoZvEuVdiuJpmbeV3H6ksvQSNq2OoKCZw=; b=hlCk7UfVxMDlyR3BhZ4iGAtzk2Qz8xuvLUT41+mHeftpfSJoBPfj8APKBSxhfs0n1z u4JJSo99F+byY3TCDO8GjLmaz91B7d01T9Hcx/MYPhc5OSX8M6olfE9URzGChC9wLlfQ xmi9OORKy3/D4REVQsLPSCda4QOl3E1NVun3KYcCbMUzY9nA1GQXYZTMvnbPvZd6VBxq sgKEQJk+HstpNVMOZ+3rKSTruhE3Cvp4EihHgyZKRauj+x2MZjwyqciAsplXbL7CqZVm Z9mZXNpi972WAMYW2f4Kdv97pzXk67I5RiKiDT5Zuy+BadfTe9lr3bYDOth2jA8g56ey AAfw==
X-Gm-Message-State: AMke39l57DiUoDCLCh9B4QTVNTwnsegx7WLIkgUpd3cY3u6ZfEP+5us/7YIGPFirWZ5wctIl2PmWE2mn1eoFNA==
X-Received: by 10.129.109.75 with SMTP id i72mr8736874ywc.340.1489170783033; Fri, 10 Mar 2017 10:33:03 -0800 (PST)
MIME-Version: 1.0
Sender: hallam@gmail.com
Received: by 10.83.19.20 with HTTP; Fri, 10 Mar 2017 10:33:02 -0800 (PST)
In-Reply-To: <20170310183026.GM96485@registro.br>
References: <CAHPuVdXTcSaVcN6fBbPy3e=PgRvg8=GemSN_YFhzX387x8YW-A@mail.gmail.com> <CFBF172D-FDD7-4DE1-B5C5-7C76A7792549@vpnc.org> <A05B583C828C614EBAD1DA920D92866BD06F4468@PODCWMBXEX501.ctl.intranet> <20170310172655.GA92236@isc.org> <CAHw9_i+1TLLAkGP_D23R9kLq+0yacXVz70h1SO6CxZcrL4E+RA@mail.gmail.com> <CAHPuVdWXGLM6JjR3J53X50W4rcTndiw0UJTKWPxe16WR3znM9Q@mail.gmail.com> <20170310183026.GM96485@registro.br>
From: Phillip Hallam-Baker <phill@hallambaker.com>
Date: Fri, 10 Mar 2017 13:33:02 -0500
X-Google-Sender-Auth: _cfRl35lHkv2sJout8xTkeeEAww
Message-ID: <CAMm+LwiBMog6Q4esYhnxmSzAex750QJR6mrLRJ_z3ttueN9L1Q@mail.gmail.com>
To: Frederico A C Neves <fneves@registro.br>
Content-Type: multipart/alternative; boundary=001a114db4ac886223054a6497d8
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/XPxyQEtXmz-YSLPX9PE40ZHtuWI>
Cc: "dnsop@ietf.org WG" <dnsop@ietf.org>
Subject: Re: [DNSOP] Updated NSEC5 protocol spec and paper
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 10 Mar 2017 18:33:05 -0000

Shhh. don't confuse with facts.

On Fri, Mar 10, 2017 at 1:30 PM, Frederico A C Neves <fneves@registro.br>
wrote:

> On Fri, Mar 10, 2017 at 01:15:42PM -0500, Shumon Huque wrote:
> ...
> >
> > Apparently there are many folks in the community who think so, otherwise
> > NSEC3 would not have been developed. I personally don't care for any
> zones
>
> I know others have already stated this but zone enumeration, at least
> at that time, was never the real reason for NSEC3, size of signing
> zones with mostly unsigned delegations was. This was only needed
> because of the wg lack of management and sensibility to operators
> needs leading to the historical debacle of opt-in. We changed the
> name, and voila opt-out ;-)
>
> Fred
>
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop
>