IETF Logo Mail Archive

Re: [DNSOP] WGLC for draft-ietf-dnsop-let-localhost-be-localhost-02

Mark Andrews <marka@isc.org> Thu, 25 January 2018 00:48 UTC

Return-Path: <marka@isc.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 11F4912D87C for <dnsop@ietfa.amsl.com>; Wed, 24 Jan 2018 16:48:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.91
X-Spam-Level:
X-Spam-Status: No, score=-6.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id asdghIAVV6hG for <dnsop@ietfa.amsl.com>; Wed, 24 Jan 2018 16:48:36 -0800 (PST)
Received: from mx.pao1.isc.org (mx.pao1.isc.org [IPv6:2001:4f8:0:2::2b]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1CA2812D878 for <dnsop@ietf.org>; Wed, 24 Jan 2018 16:48:36 -0800 (PST)
Received: from zmx1.isc.org (zmx1.isc.org [149.20.0.20]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx.pao1.isc.org (Postfix) with ESMTPS id 625B13AB003; Thu, 25 Jan 2018 00:48:33 +0000 (UTC)
Received: from zmx1.isc.org (localhost [127.0.0.1]) by zmx1.isc.org (Postfix) with ESMTPS id 52115160050; Thu, 25 Jan 2018 00:48:33 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1]) by zmx1.isc.org (Postfix) with ESMTP id 413BF160075; Thu, 25 Jan 2018 00:48:33 +0000 (UTC)
Received: from zmx1.isc.org ([127.0.0.1]) by localhost (zmx1.isc.org [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id cBdEh6QebvXC; Thu, 25 Jan 2018 00:48:33 +0000 (UTC)
Received: from [172.30.42.90] (c27-253-115-14.carlnfd2.nsw.optusnet.com.au [27.253.115.14]) by zmx1.isc.org (Postfix) with ESMTPSA id 9C486160050; Thu, 25 Jan 2018 00:48:32 +0000 (UTC)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 10.3 \(3273\))
From: Mark Andrews <marka@isc.org>
In-Reply-To: <5A68FCED.3020302@redbarn.org>
Date: Thu, 25 Jan 2018 11:48:30 +1100
Cc: dnsop@ietf.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <F0963B6A-E2F0-4BF6-A286-B209B44FF5F3@isc.org>
References: <CANV=THh6bOxd_UW=TuLonWzz0KyGapkGWpMiNuu54W=45gFAvg@mail.gmail.com> <20180124205620.GZ3322@mournblade.imrryr.org> <5A68FCED.3020302@redbarn.org>
To: Paul Vixie <paul@redbarn.org>
X-Mailer: Apple Mail (2.3273)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/dKyxAc60q3s_jcitFgLoeGbo1Ok>
Subject: Re: [DNSOP] WGLC for draft-ietf-dnsop-let-localhost-be-localhost-02
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Jan 2018 00:48:38 -0000

> On 25 Jan 2018, at 8:38 am, Paul Vixie <paul@redbarn.org> wrote:
> 
> viktor, i don't disagree with your goals, but i have a proposal as to method.
> 
> no resolver should be sending single-label names in DNS requests, period.

I would qualify that as gethostbyaddr / getaddrinfo etc. should not be ….

Resolvers do more than lookup host names.

> search list processing should not be applied to the "localhost" single label name, ever.
> 
> operating system lookups like gethostbyname() or similar, that are willing to look at the /etc/hosts or local equivalent, should be willing to discover any entry, even single-label names such as "localhost".
> 
> if there is no /etc/hosts or similar that can contain something like the "localhost" name, then the operating system library (gethostbyname or similar) ought to translate this to ::1 (or 127.0.0.1) in hard code.
> 
> in other words there is no situation in which NXDOMAIN should be encountered for the "localhost" name, because no query should ever be sent. and that's mostly true today. localhost is getting returned due to search list processing, when it's returned by DNS at all.
> 
> because i don't think outlawing the name in an RDNS responder is the right place for this logic, nor that these responders are likely to be updated soon, nor that an operator of such a server will decide that implementing this change is in their best interests (wrt help desk calls.)
> paul

> 
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop

-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742              INTERNET: marka@isc.org

v2.23.0 | Report a Bug | By Email