Re: [DNSOP] Fundamental ANAME problems

Måns Nilsson <mansaxel@besserwisser.org> Fri, 02 November 2018 17:28 UTC

Return-Path: <mansaxel@besserwisser.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 325B9126DBF for <dnsop@ietfa.amsl.com>; Fri, 2 Nov 2018 10:28:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.221
X-Spam-Level:
X-Spam-Status: No, score=-3.221 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FROM_EXCESS_BASE64=0.979, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3HHn52zbAkaz for <dnsop@ietfa.amsl.com>; Fri, 2 Nov 2018 10:28:55 -0700 (PDT)
Received: from jaja.besserwisser.org (jaja.besserwisser.org [IPv6:2a01:298:4:0:211:43ff:fe36:1299]) by ietfa.amsl.com (Postfix) with ESMTP id 5C8B01252B7 for <dnsop@ietf.org>; Fri, 2 Nov 2018 10:28:55 -0700 (PDT)
Received: by jaja.besserwisser.org (Postfix, from userid 1004) id D83769E44; Fri, 2 Nov 2018 18:28:52 +0100 (CET)
Date: Fri, 02 Nov 2018 18:28:52 +0100
From: Måns Nilsson <mansaxel@besserwisser.org>
To: John R Levine <johnl@taugh.com>
Cc: Brian Dickson <brian.peter.dickson@gmail.com>, "dnsop@ietf.org WG" <dnsop@ietf.org>
Message-ID: <20181102172852.GA20885@besserwisser.org>
References: <CAH1iCirXYsYB3sAo8f1Jy-q4meLmQAPSFO-7x5idDufdT_unXQ@mail.gmail.com> <20181102001431.129AC2007E00AF@ary.local> <CAH1iCioGbweYndujWRsHFJ5ZJz+NXkL-_cyB13Xq4m5Espbmpw@mail.gmail.com> <alpine.OSX.2.21.1811021557350.13429@ary.local>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg="pgp-sha1"; protocol="application/pgp-signature"; boundary="/9DWx/yDrRhgMJTb"
Content-Disposition: inline
In-Reply-To: <alpine.OSX.2.21.1811021557350.13429@ary.local>
X-URL: http://vvv.besserwisser.org
X-Clacks-Overhead: "GNU Sir Terry Pratchett"
X-Purpose: More of everything NOW!
X-happyness: Life is good.
User-Agent: Mutt/1.7.2 (2016-11-26)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/ZaEKVNSqRdJ7D5jGo4Gx1pOOgkc>
Subject: Re: [DNSOP] Fundamental ANAME problems
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 02 Nov 2018 17:28:58 -0000

Subject: Re: [DNSOP] Fundamental ANAME problems Date: Fri, Nov 02, 2018 at 04:03:50PM +0800 Quoting John R Levine (johnl@taugh.com):

> I'll defer to other people, but it seems to me that anything that depends on
> recursive DNS servers being updated isn't a realistic solution.  We're still
> waiting for DNSSEC, after all.

Be as pessimistic as you like, but in Sweden, more than 80% of the ISP
resolvers validate. The DNS can change, at a sometimes glacial speed,
but it does change.

"E pur si muove"
-- 
Måns Nilsson     primary/secondary/besserwisser/machina
MN-1334-RIPE           SA0XLR            +46 705 989668
Why are these athletic shoe salesmen following me??