IETF Logo Mail Archive

[DNSOP] Re: Call for Adoption: draft-davies-internal-tld

John R Levine <johnl@taugh.com> Sat, 19 April 2025 12:28 UTC

Return-Path: <johnl@taugh.com>
X-Original-To: dnsop@mail2.ietf.org
Delivered-To: dnsop@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id E71E51E6E83E for <dnsop@mail2.ietf.org>; Sat, 19 Apr 2025 05:28:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -4.401
X-Spam-Level:
X-Spam-Status: No, score=-4.401 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=iecc.com header.b="Uxpd5EG/"; dkim=pass (2048-bit key) header.d=taugh.com header.b="WUMD8MyR"
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RrVAM4V0a29r for <dnsop@mail2.ietf.org>; Sat, 19 Apr 2025 05:28:53 -0700 (PDT)
Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id CC7E91E6E839 for <dnsop@ietf.org>; Sat, 19 Apr 2025 05:28:53 -0700 (PDT)
Received: (qmail 24944 invoked from network); 19 Apr 2025 12:28:52 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed; d=iecc.com; h=date:message-id:from:to:subject:in-reply-to:references:mime-version:content-type; s=616e68039704.k2504; t=1745065722; x=1745411322; bh=Zlxt+u7cN/EwwS+RShyreHrpnIpl4btcXT2RSk3mUFU=; b=Uxpd5EG/UvLJAKT6kA3J/iRXNFBT/hb2vafyyDf5VJYbjmGw1JJYd1flTGm4b4Kp8qcg+IBDaxdN5O36uozTKO1G8bsEFd9Laa2SlU6Xxw1DQWvtvCHXl6fyK6JLIKj4FtsfTPleYcEOpuDQXuzB0DQycACr91SW2SFqFTze7hECXuvE2qnFDOd8uFYjA/00oyGVDKiFet0n15I+GZCqemfpv8TATLlmeoqDABKuH7hddZHxEmepSizPbceOJQpdduMWcOZxgqDC/ZojuPaxXXO3YU016kQjCRO572izTwfI13+7utL9PLkdfX5Hli1fPJfsp98/7dPtIUUNgWo/zw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed; d=taugh.com; h=date:message-id:from:to:subject:in-reply-to:references:mime-version:content-type; s=616e68039704.k2504; bh=Zlxt+u7cN/EwwS+RShyreHrpnIpl4btcXT2RSk3mUFU=; b=WUMD8MyRz88JiOGcyJ7wNbTLfR6v+czoQlzs8TCXtt0qHXdiOhG+ohuf/NvhYGmKQKGOUAqiVz6AWsrcNBZSkudIAJUQxNzFPS/gTBETjbbs52oIK6YbxxOlNZiKVn3aenh0AXcjkegzoFOroSQpH4zxdZJC7Y12NSslsI2TVzE+rhIX3s0hzIvTec1Aw0F4SnDg4yy8oNQFDpCOk/mwuUtUAZ26PiQD42TssSZCIk0W8u1ZOGzp22BwzkdSR4ITXt1jdkyJQSxMLtF2sBUYdEC4L9VZdtf5MqBdW0/gNL+K3w+iP6MPQMKRWNyU4I3Cq0+/y0FWVJ+6+/ryYPR8tA==
Received: from ary.qy ([IPv6:2001:470:1f07:1126:0:78:696d:6170]) by imap.iecc.com ([IPv6:2001:470:1f07:1126:0:78:696d:6170]) with ESMTPS (TLS1.3 ECDHE-RSA CHACHA20-POLY1305 AEAD) via TCP6; 19 Apr 2025 12:28:52 -0000
Received: by ary.qy (Postfix, from userid 501) id E5D1FC55A8EE; Sat, 19 Apr 2025 08:28:51 -0400 (EDT)
Received: from localhost (localhost [127.0.0.1]) by ary.qy (Postfix) with ESMTP id 520F7C55A8D0; Sat, 19 Apr 2025 08:28:51 -0400 (EDT)
Date: Sat, 19 Apr 2025 08:28:51 -0400
Message-ID: <ccee3050-b5bc-5733-1652-27cde33fef1c@taugh.com>
From: John R Levine <johnl@taugh.com>
To: Philip Homburg <pch-dnsop-6@u-1.phicoh.com>, dnsop@ietf.org
X-X-Sender: johnl@ary.qy
In-Reply-To: <m1u62ny-0000MNC@stereo.hq.phicoh.net>
References: <m1u5h1G-0000LcC@stereo.hq.phicoh.net> <83666fd3-a51f-46e1-a5ac-0b9a46361480@desec.io> <20250418201613.D9204C53F937@ary.qy> <m1u5sY5-0000MSC@stereo.hq.phicoh.net> <38fda3ef-2135-8e37-8e54-f04d5987fbfa@taugh.com> <m1u62ny-0000MNC@stereo.hq.phicoh.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Message-ID-Hash: 62CWET6FUWBXFSU76DMDFWIBF7FNLX4G
X-Message-ID-Hash: 62CWET6FUWBXFSU76DMDFWIBF7FNLX4G
X-MailFrom: johnl@taugh.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dnsop.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [DNSOP] Re: Call for Adoption: draft-davies-internal-tld
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/dRxawSyR2iL-lJkDrUVDZUonnTw>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Owner: <mailto:dnsop-owner@ietf.org>
List-Post: <mailto:dnsop@ietf.org>
List-Subscribe: <mailto:dnsop-join@ietf.org>
List-Unsubscribe: <mailto:dnsop-leave@ietf.org>

On Sat, 19 Apr 2025, Philip Homburg wrote:
> In your letter dated 18 Apr 2025 17:43:59 -0400 you wrote:
>> I use unbound, which by default serves empty stubs for all these zones,
>> along with the RFC1918 rDNS.  In practice it works fine.
>
> Yes, I know that part works.
>
> I run a validating proxy on my laptop. That will fail.

We can have an unproductive argument about whether that's a fundamental 
flaw or a configuration error.

If you're going to make local modifications to the DNS tree in some parts 
of your setup but not others, it is not much of a surprise that the 
results are inconsistent.  I think we either need to decide that since 
people have been doing local DNS hacks for at least three decades, either 
we admit that it does what it does and you should be aware that some parts 
don't work. or we should think about some way to keep the local DNS hacks 
in sync throughout a network for the people who don't use their cache as 
the source of DNS truth.

R's,
John

v2.31.3 | Report a Bug | By Email | System Status