Re: [DNSOP] DNSOP Call for Adoption draft-vixie-dns-rpz

sthaug@nethelp.no Wed, 21 December 2016 15:38 UTC

Return-Path: <sthaug@nethelp.no>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B69581296F0 for <dnsop@ietfa.amsl.com>; Wed, 21 Dec 2016 07:38:29 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.301
X-Spam-Level:
X-Spam-Status: No, score=-7.301 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-3.1, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZAJHJMSQvTP9 for <dnsop@ietfa.amsl.com>; Wed, 21 Dec 2016 07:38:28 -0800 (PST)
Received: from bizet.nethelp.no (bizet.nethelp.no [195.1.209.33]) by ietfa.amsl.com (Postfix) with ESMTP id D819E1294B8 for <dnsop@ietf.org>; Wed, 21 Dec 2016 07:38:27 -0800 (PST)
Received: from localhost (bizet.nethelp.no [IPv6:2001:8c0:9e04:500::1]) by bizet.nethelp.no (Postfix) with ESMTP id 112B3E6066; Wed, 21 Dec 2016 16:38:26 +0100 (CET)
Date: Wed, 21 Dec 2016 16:38:26 +0100
Message-Id: <20161221.163826.74705202.sthaug@nethelp.no>
To: chinese.apricot@gmail.com
From: sthaug@nethelp.no
In-Reply-To: <CACfw2hj4VfuqsM-jRpxNc+bWNsUcSid+Y=r9U5jsA-0ZLbLRUg@mail.gmail.com>
References: <C18E2D4E-EE89-4AF6-B4A0-FAD1A7A01B5E@vpnc.org> <5248A099-7E1F-437A-A1B7-C300F917D273@fl1ger.de> <CACfw2hj4VfuqsM-jRpxNc+bWNsUcSid+Y=r9U5jsA-0ZLbLRUg@mail.gmail.com>
X-Mailer: Mew version 3.3 on Emacs 21.3 / Mule 5.0 (SAKAKI)
Mime-Version: 1.0
Content-Type: Text/Plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/eLjBxQ-wKeKDynR6L-GNZ8S406I>
Cc: dnsop@ietf.org, paul.hoffman@vpnc.org, dns@fl1ger.de
Subject: Re: [DNSOP] DNSOP Call for Adoption draft-vixie-dns-rpz
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 21 Dec 2016 15:38:30 -0000

Since operator participation was mentioned,

<op hat on>

> this draft actively destroys trust in the DNS, which reduces trust in the
> Internet overall.

No, this draft simply specifies what operators are already doing. Not
because they are intent on destroying trust in the DNS or the Internet,
but because they are forced to do this by governments, they need to
protect their own network, they would like to protect their customers,
and lots of other reasons.

It's possible that the ball will be dropped on this one like it was for
NAT. That would be stupid, IMHO.

Steinar Haug, AS2116