IETF Logo Mail Archive

Re: [DNSOP] Glue is not optional, but sometimes it *is* sufficient...

Tony Finch <dot@dotat.at> Fri, 22 May 2020 12:47 UTC

Return-Path: <dot@dotat.at>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E16933A0BB2 for <dnsop@ietfa.amsl.com>; Fri, 22 May 2020 05:47:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id W_0KbDhuVaDb for <dnsop@ietfa.amsl.com>; Fri, 22 May 2020 05:47:35 -0700 (PDT)
Received: from ppsw-30.csi.cam.ac.uk (ppsw-30.csi.cam.ac.uk [131.111.8.130]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A33E43A0BAE for <dnsop@ietf.org>; Fri, 22 May 2020 05:47:35 -0700 (PDT)
X-Cam-AntiVirus: no malware found
X-Cam-ScannerInfo: http://help.uis.cam.ac.uk/email-scanner-virus
Received: from grey.csi.cam.ac.uk ([131.111.57.57]:33352) by ppsw-30.csi.cam.ac.uk (ppsw.cam.ac.uk [131.111.8.136]:25) with esmtps (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256) id 1jc75J-000LC1-d6 (Exim 4.92.3) (return-path <dot@dotat.at>); Fri, 22 May 2020 13:47:33 +0100
Date: Fri, 22 May 2020 13:47:32 +0100
From: Tony Finch <dot@dotat.at>
To: John R Levine <johnl@taugh.com>
cc: Warren Kumari <warren@kumari.net>, dnsop <dnsop@ietf.org>
In-Reply-To: <alpine.OSX.2.22.407.2005211842300.6195@ary.qy>
Message-ID: <alpine.DEB.2.20.2005221345180.25154@grey.csi.cam.ac.uk>
References: <CAHw9_i+UsV9NkuPM4KYBZhO7_J78MkUEyVR3fr=vOX-vsjJeUA@mail.gmail.com> <20200521214124.271EC197E0DF@ary.qy> <CAHw9_iKVkD4ORCc_DWSPXww6R43oL_N8TE3F6R-9YQuw1SAfjQ@mail.gmail.com> <alpine.OSX.2.22.407.2005211842300.6195@ary.qy>
User-Agent: Alpine 2.20 (DEB 67 2015-01-07)
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/bPFMs9EEzariFJ_nVSV_r1h1HiQ>
Subject: Re: [DNSOP] Glue is not optional, but sometimes it *is* sufficient...
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 May 2020 12:47:38 -0000

John R Levine <johnl@taugh.com> wrote:
>
> A week or two ago I scannned TLD zone files to see how many signed A and AAAA
> records there were.  Quite a lot, most looks to be orphan glue in Afilias
> zones that they didn't delete after the registered zone went away.

I vaguely remember a policy change in .com and .net years ago when they
stopped including orphan glue in the zones. Was this to do with prep work
for DNSSEC? I'm slightly surprised .org didn't follow suit.

Tony.
-- 
f.anthony.n.finch  <dot@dotat.at>  http://dotat.at/
Rattray Head to Berwick upon Tweed: Southwest 5 to 7, increasing gale 8 at
times later. Moderate or rough. Rain then showers. Good, occasionally poor at
first.

v2.23.0 | Report a Bug | By Email