Re: [DNSOP] WG review of draft-ietf-homenet-dot-03

Ted Lemon <mellon@fugue.com> Mon, 20 March 2017 22:32 UTC

Return-Path: <mellon@fugue.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 245C7124D68 for <dnsop@ietfa.amsl.com>; Mon, 20 Mar 2017 15:32:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yfSkFPTXSTIO for <dnsop@ietfa.amsl.com>; Mon, 20 Mar 2017 15:32:29 -0700 (PDT)
Received: from mail-qk0-x236.google.com (mail-qk0-x236.google.com [IPv6:2607:f8b0:400d:c09::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 95720124B0A for <dnsop@ietf.org>; Mon, 20 Mar 2017 15:32:29 -0700 (PDT)
Received: by mail-qk0-x236.google.com with SMTP id 1so122411222qkl.3 for <dnsop@ietf.org>; Mon, 20 Mar 2017 15:32:29 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20150623.gappssmtp.com; s=20150623; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=NmXwJhklfRSLFNtpQ7xlw6VqWbx64Zy66LHbOsYOrlU=; b=SRU0HhnhmRM8IpuYWXa8Tuf0AinxMavi6IjHTuY2Jssr2Dmx8cxDYRCW2FUZSwWJ0r MPDqzIJfesqCqbHG6JlbQwLEEQ65hGpd//r+i2ddJJ+BUnWsAXVEV335FxxKh7euvJVq edYPyeOG1S3khR6PNbjPrdB6h4iuXN9tpGL63uocqRZqb/pe6BF3In9nxvvpmgC2/5Rb A8miKhnlHKc2kwXFzi57/Ws91ZONXzk4nZSEYVUdzSHzZjRm4qM/yXxAkqmgDwUuSejZ 1ct42t1nrkPjFN4aTk4C/JUlxGTA7Ss0oykv49aFTXx8hBdFkXbsHKSXgv54w2AwhWBd LtWw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=NmXwJhklfRSLFNtpQ7xlw6VqWbx64Zy66LHbOsYOrlU=; b=H03Bbf/i5V0cNXaQ19pCV2PeT0Qne4MjfnKDbhHvAXeqLFk01Qrl8xb1LZY38Wdr4F rzNyqxr2lUIWNeJom+6ikfiscXg0I3vo04/ETPHvTAyUwWyUq65sdFC9+uoJQLKmRHz1 H318oyhh1AMt6AQX8G1vNuIenVLg/5MFzcE1wy2/xqEkIj/VlQD+gAk/WbrpOFyOwE/s kqT5QpOaRdnjXBd2/WhGk1x9KlC35XL28Bhml1G/OH+3J3XeeATFmMFOQphgNaSQngip tta5sCnRpgHOZ02AtxYKoKMeQvD8uPIsCzecrRFSIGBd59gQ803gQPb0QYvBdl4QiYHE kK7A==
X-Gm-Message-State: AFeK/H0k306Zpc33aln1NPiZzHVfCXUCNAX8zcuPEKKcF/yS/dpTB75oRDOzSCedajYreg==
X-Received: by 10.55.101.7 with SMTP id z7mr27769530qkb.117.1490049148802; Mon, 20 Mar 2017 15:32:28 -0700 (PDT)
Received: from [10.0.30.228] (c-73-167-64-188.hsd1.ma.comcast.net. [73.167.64.188]) by smtp.gmail.com with ESMTPSA id c6sm13381072qte.30.2017.03.20.15.32.26 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 20 Mar 2017 15:32:28 -0700 (PDT)
From: Ted Lemon <mellon@fugue.com>
Message-Id: <F9227D7E-F8A1-4B4E-958B-047E4F04CC9A@fugue.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_38BF9AEC-AABD-423B-81B4-F1E51705811F"
Mime-Version: 1.0 (Mac OS X Mail 10.2 \(3259\))
Date: Mon, 20 Mar 2017 18:32:24 -0400
In-Reply-To: <alpine.LRH.2.20.999.1703201816140.542@bofh.nohats.ca>
Cc: dnsop <dnsop@ietf.org>
To: Paul Wouters <paul@nohats.ca>
References: <1E14B142-680B-4E30-809B-68E03EB6E326@gmail.com> <61FD3EE3-3043-4AB1-9823-6A9D61B1438C@vigilsec.com> <BE2A3845-D8AA-433A-9F00-1056ECFD335F@fugue.com> <21C8F856-FE3F-42A6-A8ED-888D0797B68B@vigilsec.com> <60C85486-E351-4C42-ADEB-FCBB56F4EA27@fugue.com> <AB11455F-7E43-4CB3-9F13-DB6A09F739EB@vigilsec.com> <CEC8CC6A-861A-471C-B7FA-4BB05C81CCF0@gmail.com> <F7AA49EF-2708-4948-9B60-6660DA6BC841@vigilsec.com> <734EC35A-4B1F-43EB-BE37-C34CA46BDA26@fugue.com> <203D2BEA-1008-48A0-9CE2-1FD621C6117F@shinkuro.com> <3134EDC2-FB00-41EA-8338-6E6B196137F1@fugue.com> <572B4EBA-F37F-4E92-A252-44BAF5DE7FF5@shinkuro.com> <alpine.LRH.2.20.999.1703201816140.542@bofh.nohats.ca>
X-Mailer: Apple Mail (2.3259)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/fTdMknwBHTIIYl_6APj7iGFCUzg>
Subject: Re: [DNSOP] WG review of draft-ietf-homenet-dot-03
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 20 Mar 2017 22:32:31 -0000

On Mar 20, 2017, at 6:19 PM, Paul Wouters <paul@nohats.ca> wrote:
> I am assuming that if stubs are validating, then they must also support
> excluding special queries from validation, such as mDNS, .onion and
> .homenet.

I don't think this is a reasonable assumption.   We don't, for example, assume that all resolvers exclude mDNS, or that all resolvers exclude .onion.   In the case of .onion, we'd prefer that the stub validate, so that it realizes there's no point in sending a query against a .onion domain.