Re: [DNSOP] Fwd: New Version Notification for draft-reddy-dnsop-error-page-05.txt
tirumal reddy <kondtir@gmail.com> Fri, 15 January 2021 07:22 UTC
Return-Path: <kondtir@gmail.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8F42F3A0E1D for <dnsop@ietfa.amsl.com>; Thu, 14 Jan 2021 23:22:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MxfPkmAY9-pc for <dnsop@ietfa.amsl.com>; Thu, 14 Jan 2021 23:22:31 -0800 (PST)
Received: from mail-io1-xd35.google.com (mail-io1-xd35.google.com [IPv6:2607:f8b0:4864:20::d35]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 78CDA3A0E1C for <dnsop@ietf.org>; Thu, 14 Jan 2021 23:22:31 -0800 (PST)
Received: by mail-io1-xd35.google.com with SMTP id d9so16381778iob.6 for <dnsop@ietf.org>; Thu, 14 Jan 2021 23:22:31 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=EKir8d6dikbcVNn+fLOQDaASzXVgWcKrwhuzDk3AMZE=; b=dzsEom6gLB6JXqRFv7dwsU5B1o+Z9wL9F2gh7YxtlNq1MRj7XKKa2UorYuc6Eldmn/ 1lVzrFuhQjI1jUkzk/T9w/c5bKmd9sHEJjjVFCnrxHFyqBdX0gieXHyAn0hJIIUSIJSv IahuanI4mKknaVpGGpUDpTTok6SkytXwglqJanGKtoshAO1f/jP6Sa9gbjqda454Glaa ncZ0At38Rkqbh1IpTDfFJetD8xbL/gXrThK8LRpoavv6kpWkeWytAIKJo9BudpL71Cti w5uHM9WF7Z2I0cBxIP/MC+8hyAOxWNDvfLQ7zQAV1FoMpLEetKCyBf19pbr455YvNOU1 5oMQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=EKir8d6dikbcVNn+fLOQDaASzXVgWcKrwhuzDk3AMZE=; b=rrVb1qNB7WOUSuuTrWzaC3yM9uSwm60Lc76PX3I3cYKdQ6L7835SQBDwrHRuGoE1V2 kmvRksvw4WfrQLsBtJZcQNNMNTp113233uynT4bv8OAF8hbas03A/9Qr+LQfb0xdO0VI vf7E8cR8Nh7Dfx0ZIZZNZt7VtJrvYfUia3+VnPUn93Vo40P30dhUAgjuWoE4kDk2P2fU g67vhy6pURqC0+VKi5YkEzdHFUpU18QXW0RkIuJ+bsWAI7715shkHTseBIDOwKyxeHhj O/UfvtxVIwn2WU3lWY8j9RoicXsu1u0/aJOdbXyQamenwDE07MfToOO0Lep9N3FW2MeH Etxg==
X-Gm-Message-State: AOAM531QXB3g9HHMGKsJTXz1Tr57P/qF7RwaaOe4UB6Gu4dG4EPr8MAE c4Xukgt7w1mKW4n+HK17SZIga4mZk1IYLLSsqlk=
X-Google-Smtp-Source: ABdhPJxJRprWJmigXqTBMjvYxsSAn4tdi5ktgQ/fo+sHIcnEqJgln59E0uYMYS+e4/r3Sa5XW7ggVRQrxIWjWWk6GAM=
X-Received: by 2002:a5d:8405:: with SMTP id i5mr7791464ion.164.1610695350512; Thu, 14 Jan 2021 23:22:30 -0800 (PST)
MIME-Version: 1.0
References: <160265494258.598.6262482696678606763@ietfa.amsl.com> <CAFpG3gfxLB4O+Z3bW1zQXMFMxVEEwpqRsyYC6ctC2rr-sM8MZA@mail.gmail.com> <6b3668ed-5f3e-8894-158e-1b5ccd7c2a19@article19.org>
In-Reply-To: <6b3668ed-5f3e-8894-158e-1b5ccd7c2a19@article19.org>
From: tirumal reddy <kondtir@gmail.com>
Date: Fri, 15 Jan 2021 12:52:19 +0530
Message-ID: <CAFpG3gca=CcRWd+cqdJsGEy_reEoqK1Pe_Cg=jHgPuXqFWEvZA@mail.gmail.com>
To: Joey S <joeysalazar@article19.org>
Cc: dnsop <dnsop@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000035709a05b8eb3c4b"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/gQ2ZlEa5Fe1RncPEu62oAAzrxpI>
Subject: Re: [DNSOP] Fwd: New Version Notification for draft-reddy-dnsop-error-page-05.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 15 Jan 2021 07:22:34 -0000
Hi Joey, Thanks for the interest in the draft. We published a revised draft https://tools.ietf.org/html/draft-reddy-dnsop-error-page-06 to address the comments from the WG during the presentation at IETF-109. Further comments and suggestions are welcome. Cheers, -Tiru On Sat, 19 Dec 2020 at 02:57, Joey S <joeysalazar@article19.org> wrote: > Dear Tirumal, dnsop, > > Following up on the last IETF session and observations regarding the > usability of this draft at the end of the meeting, this draft covers 2 > important areas from my perspective: DNS error information made available > to the end-users as opposed to (mainly) administrators/operators from the > extended-DNS-errors RFC (rfc8914); the promotion of increased DNS security > as a means to achieve reliable information. > > For those two reasons I'd like to ask: > > - Are there specific sections of the I-D that require input? > - Are there remaining questions from the 109 meeting? > - What's currently needed for potentially moving forward with WG > adoption? > > Thank you, > > -- > Joey Salazar > Digital Sr. Programme Officer > ARTICLE 19 > 6E9C 95E5 5BED 9413 5D08 55D5 0A40 4136 0DF0 1A91 > > On 14-Oct-20 10:50 PM, tirumal reddy wrote: > > Hi all, > > This revision https://tools.ietf.org/html/draft-reddy-dnsop-error-page-05 > updates security considerations section to address comments from the WG > during the presentation at IETF-108. > > As a reminder, it discusses a method to return an URL that explains the > reason the DNS query was filtered. It defines an Error page URI EDNS0 > option to return an URI Template which when accessed provides the reason > the DNS query was filtered. The Error Page URI Template is protected with a > signature for data origin authentication. It discusses mandatory rules > (e.g., DoH and strict privacy profile in DoT) to process the Error page URI > EDNS0 option. > > Further comments and suggestions are welcome. > > Cheers, > -Tiru > > ---------- Forwarded message --------- > From: <internet-drafts@ietf.org> > Date: Wed, 14 Oct 2020 at 11:25 > Subject: New Version Notification for draft-reddy-dnsop-error-page-05.txt > To: Tirumaleswar Reddy.K <kondtir@gmail.com>, Mohamed Boucadair < > mohamed.boucadair@orange.com>, Neil Cook <neil.cook@noware.co.uk>, Dan > Wing <dwing-ietf@fuggles.com> > > > > A new version of I-D, draft-reddy-dnsop-error-page-05.txt > has been successfully submitted by Tirumaleswar Reddy and posted to the > IETF repository. > > Name: draft-reddy-dnsop-error-page > Revision: 05 > Title: DNS Access Denied Error page > Document date: 2020-10-13 > Group: Individual Submission > Pages: 16 > URL: > https://www.ietf.org/archive/id/draft-reddy-dnsop-error-page-05.txt > Status: > https://datatracker.ietf.org/doc/draft-reddy-dnsop-error-page/ > Htmlized: > https://datatracker.ietf.org/doc/html/draft-reddy-dnsop-error-page > Htmlized: > https://tools.ietf.org/html/draft-reddy-dnsop-error-page-05 > Diff: > https://www.ietf.org/rfcdiff?url2=draft-reddy-dnsop-error-page-05 > > Abstract: > When a DNS server filters a query, the response conveys no detailed > explanation of why that query was blocked, leading thus to end-user > confusion. A solution is needed to enhance the user experience. > > This document defines a method to return an URI that explains the > reason why a DNS query was filtered. > > > > > Please note that it may take a couple of minutes from the time of > submission > until the htmlized version and diff are available at tools.ietf.org. > > The IETF Secretariat > > > > _______________________________________________ > DNSOP mailing listDNSOP@ietf.orghttps://www.ietf.org/mailman/listinfo/dnsop > > >