Re: [DNSOP] draft-ietf-dnsop-kskroll-sentinel-12

Ralph Dolmans <ralph@nlnetlabs.nl> Thu, 03 May 2018 09:20 UTC

Return-Path: <ralph@nlnetlabs.nl>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7B50F124235 for <dnsop@ietfa.amsl.com>; Thu, 3 May 2018 02:20:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.001
X-Spam-Level:
X-Spam-Status: No, score=-7.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nlnetlabs.nl
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xBMDIMXai2q9 for <dnsop@ietfa.amsl.com>; Thu, 3 May 2018 02:20:57 -0700 (PDT)
Received: from dicht.nlnetlabs.nl (open.nlnetlabs.nl [185.49.140.10]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 96D44120726 for <dnsop@ietf.org>; Thu, 3 May 2018 02:20:57 -0700 (PDT)
Received: from [IPv6:2a04:b900:0:1:9421:625a:1921:b449] (unknown [IPv6:2a04:b900:0:1:9421:625a:1921:b449]) by dicht.nlnetlabs.nl (Postfix) with ESMTPSA id AB79486F1 for <dnsop@ietf.org>; Thu, 3 May 2018 11:20:54 +0200 (CEST)
Authentication-Results: dicht.nlnetlabs.nl; dmarc=none header.from=nlnetlabs.nl
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=nlnetlabs.nl; s=default; t=1525339254; bh=B9Sy5iskIMNgHSmlAU94dKaBcVX7fuGCS0pyHYIeDxc=; h=Subject:To:References:From:Date:In-Reply-To; b=ng9PU+pxHUzNOb/xGGkGqWJPREFX1dPZtHBSh47IqC/9mX22EhjJpNZdUT6ZOsuZk 3KO+C+E1KA130vRHGer70CcHjSAnHy1MNI1BrvcL6A5LAu2kfNmsQBpLLsX7vt+ilo 8+wdXMWj0lyKBwX/wvgc2vhLiZdLuTfJqdPGQt6A=
To: dnsop@ietf.org
References: <CADyWQ+EE9YCCM03wKvd-HefpoQVqhOfeeLKLV8L2LJj+tqmEzA@mail.gmail.com> <CACWOCC936z-4j8e+d7bvhfr_Mk8tk64tkuiRDTRtrqrBTJBKJw@mail.gmail.com> <CAHw9_iLgTvPHe5jeL-0QZJ4+cxes8bBpCEULuDKThpjXoKzrbA@mail.gmail.com> <20180406134501.GC49550@vurt.meerval.net> <4A943DE7-81BC-41AC-93F7-4EC0975DF6B6@gmail.com> <5E7C31BE-EA5F-4A68-96FE-975CFAF77E42@apnic.net>
From: Ralph Dolmans <ralph@nlnetlabs.nl>
Openpgp: preference=signencrypt
Autocrypt: addr=ralph@nlnetlabs.nl; prefer-encrypt=mutual; keydata= xsBNBFLLw3QBCADwSt/VWovpRdtSFdwCW+/4ZaFEtIPAKgID42dzNOU+57LP3xuHiEeXZ0Ln hJRNmW4g5+01Fq4+bTeRyfL7MauIpumSqpnCpq5RZYDI8QqZftYnmm8XdjOjNLJXX3nfD0Tc 1YD2psNHLR9YOT0WfiPGPuN8uTzE/EcFHuMgrWx4kdWQGO2EBOu1Ss1ejvK6xs5AIn209mWY CPZ1FA24AgvnOPPYH2i9Fx+MMoj3Aun/nJbnp7B/4kKQvCDBJNyDYxFdgfjT0lkM5bSa7PJq AkXB/HYCJnfw9+MLbkoozdMs9ddg9YaqwSDWe60pBgkRnvd4+69OgZJvSYxky4XYMNdJABEB AAHNIlJhbHBoIERvbG1hbnMgPHJhbHBoQG5sbmV0bGFicy5ubD7CwH4EEwECACgFAlLLw3QC GyMFCQlmAYAGCwkIBwMCBhUIAgkKCwQWAgMBAh4BAheAAAoJEDCRjYJ1ckIiENAH+wZyFcl3 gHTRtwVWbjlwdP6322ZhyxiDqW5AU+KXxoMU/SAp0LLxmDUFHvTWhXvVNdhgGUn9fbZmXHUJ Yv2p/t7ZEoxcRxTXZEaMKqdKjRhcl3lt3xYsLIx9yCieZFg2P2UHN/BNqiOsqLRHHCs5tKUb ewG38VbFH0WyaT3+dKwxOxwlDL5Z8rWMmtQ7afLAsNwAwTXzjNcWLOlOirl7cdq26DyjKpXA fxjMrFhgI/0ZdeMs9vsA/5iLx884KtoAd7Mtc2lIz8r+rCySY4V9e1qVycgeehzhV/h6BjYw HbTM1wzMBYiHIZGKg+EsawAKSw043x1YzAxHYRqTCVio4OfOwE0EUsvDdAEIAOFWixZPwnnt 9AqlShBnAjrkVlYxcElV+K35r+7+yFyI/ikKl4b/MsDi2DXRUzf8BKegeI8rJfODMZ2IlKTh KyTfwI8hb6CVfQhkxWTVsug+LEm6aXKiEZRwLfhvqapyEDxQNQZmKvAxaPwtHbyoBntMMjYd s8QSCaWr+uJVwu28orbQ+DRnvAXeB3EiGclAZ8aC9Ckjzh0xbwIgXv6iSRBMX8SmFEDtil24 APtWf8KRG9Vassu1RE07uECgQT51VrrywPnCmJG1JlNr9Z/8PVkqFRNDV0fWgyHrEXusS5Jn afONeXIXXT91j4fSd+DeQvFvgLJSF2zKNRP7T58cyjEAEQEAAcLAZQQYAQIADwUCUsvDdAIb DAUJCWYBgAAKCRAwkY2CdXJCIterB/9VgDdSeTf7eO73MfnnxiAXw065YZE68s7KhGMk7vBm 4LsJ3HGjeOAEcpRFe9uaCB5cPX5nuuQSCWYREUXszgWktTRpgYPCqcr5hl9PfGuoRD4GgSfS nM1tNutn6r/86Ia0hTrshs9f5v8Sv0ePbpif4lgajwDpo+s8UD0aXuRq7LTL2Ip8blNLACRr c6/YKKLGBze5I2RD5QXsvyRzRuxCU9fJ7LYaA9BT+S0TXrp3yVPx3iQv6GmN6j+5uHY6SISX /XPnWD+cDxdcqWjjK0B1nT6u+doC2QlXAYq6r+Xq0OHsCF8Qxk8uenfXynfIEMjgtb62IUij 6Q1/k0+o8DiO
Message-ID: <fbad9c81-cf06-e8c1-ef02-9d080604bd80@nlnetlabs.nl>
Date: Thu, 3 May 2018 11:20:54 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.7.0
MIME-Version: 1.0
In-Reply-To: <5E7C31BE-EA5F-4A68-96FE-975CFAF77E42@apnic.net>
Content-Type: text/plain; charset=utf-8
Content-Language: en-US
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/Yq8wiTr7ro6LvouMPee47QbYYuI>
Subject: Re: [DNSOP] draft-ietf-dnsop-kskroll-sentinel-12
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 03 May 2018 09:20:59 -0000

Hi,

On 03-05-18 10:15, Geoff Huston wrote:
> We have also taken the implementation comments posted to the WG mailing list and collected them in a new section titled "Implementation Experience” in the light of Suzanne’s request

This draft is by now implemented in Unbound and is in version 1.7.1
which we just released. I didn't find deficiencies in the latest version
of the draft that would hinder implementation.

I like to second Ondrej's earlier remark that from an implementors point
making an implementation for an early draft makes little sense, which is
why we waited until now. We need a somewhat stable specification before
we make code that will be used in the real world to prevent pollution
and in this case would make it even harder to do proper measurements.

-- Ralph