IETF Logo Mail Archive

Re: [DNSOP] WGLC for draft-ietf-dnsop-let-localhost-be-localhost-02

Ted Lemon <mellon@fugue.com> Fri, 26 January 2018 01:17 UTC

Return-Path: <mellon@fugue.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DE17312D870 for <dnsop@ietfa.amsl.com>; Thu, 25 Jan 2018 17:17:44 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id q5ajXgXSN5cR for <dnsop@ietfa.amsl.com>; Thu, 25 Jan 2018 17:17:43 -0800 (PST)
Received: from mail-qt0-x230.google.com (mail-qt0-x230.google.com [IPv6:2607:f8b0:400d:c0d::230]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E71A012D866 for <dnsop@ietf.org>; Thu, 25 Jan 2018 17:17:42 -0800 (PST)
Received: by mail-qt0-x230.google.com with SMTP id z11so24168382qtm.3 for <dnsop@ietf.org>; Thu, 25 Jan 2018 17:17:42 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20150623.gappssmtp.com; s=20150623; h=from:mime-version:subject:date:references:to:in-reply-to:message-id; bh=nGVmjyrl/DpA/X67K0uCjuxBbfNs8ALlOJrhUQptSWQ=; b=S+scrnw4fSYYtpSPZRPqqhmpoZ/8yzxysWS3S8fP69ubM6dr77E3qCnPzSM3gtenV1 EZGfLHVuoe4XH4rzZ45aYacSZ/O4/tEwX4Eb6owApTobRkJf6mPe5r48KiSEMiU3RC0k l4rVKm58g9+08/VitUhd7Ru43yDAKgiKRS+rrVLJ4SpyAc2OiAs6L+ttUJxWXBE8fb8k ATMCjaeH5NCbrT3MWvXlP67pvVvpUlICG4P53j1wcHyBVwbzHgUsnxcBX5/bOlv2YWl7 d+In3o9q7i1DW27wGWW3c5ECVRvMJP/fkYclVOmgTJD0Vi7GM+2O58pGYGqamb8G1rL4 jOIA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:mime-version:subject:date:references:to :in-reply-to:message-id; bh=nGVmjyrl/DpA/X67K0uCjuxBbfNs8ALlOJrhUQptSWQ=; b=McUuLaLYx0CwFj+rzdHnSGS6lJ8kIn1yBKyv0+T3Kg1Zgl1c8ofipdvXe9htkq6lmi Mrj3Gl9LwTibFpmKFJU7Y9nHPMddt2yuQQQmXqyxkKUIKzOf93+9jPHPAgZviTnPPUpn En7P+rjkcKq+JnbdA/9qC6OS4aQBMxZUSbok0S1rK49a+UEOaDhRtuPQujY9wvazVjEB HCwzOIBqPDD0Cif9Rgq4DBwg7KQQ8zppKm58lNrX+5HWm/gKrxmrSgiVhe2AP/aGc7Pi 4g0/JX0e++9X2UGZ8VaEY42mTKsrmjWeswbv0T4/J+ECKyuaHxK0IIFmpLHJzNCC7oNC cZRg==
X-Gm-Message-State: AKwxyteAEsxz6w1tO7/6Zp5++CO8QPx/8oxY+GOLd0Arxec/+hkEqyEr qaHOv58jjKMFg63gOK6ilnQSIAPI/sE=
X-Google-Smtp-Source: AH8x226Pcn5UTijOMMfHMNlbKkE8TmrPGub8FuxKV8bHGsbIEJniEaC0iSyjb8BeM8/u5PeuMGcC7A==
X-Received: by 10.200.23.47 with SMTP id w44mr20937287qtj.131.1516929461708; Thu, 25 Jan 2018 17:17:41 -0800 (PST)
Received: from [10.0.30.153] (c-24-60-163-103.hsd1.nh.comcast.net. [24.60.163.103]) by smtp.gmail.com with ESMTPSA id p31sm4791754qta.77.2018.01.25.17.17.19 for <dnsop@ietf.org> (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 25 Jan 2018 17:17:19 -0800 (PST)
From: Ted Lemon <mellon@fugue.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_1F47179C-59B2-483D-AB7E-56A35CF2FC40"
Mime-Version: 1.0 (Mac OS X Mail 11.2 \(3445.5.20\))
Date: Thu, 25 Jan 2018 20:17:17 -0500
References: <4b9d884e-627b-8019-2b05-b64cc20ffd84@nic.cz> <75AC4EA7-1E38-463F-B3A7-B996F7584306@isc.org> <20180125175416.GA3322@mournblade.imrryr.org> <AB53330A-91CB-4F76-96A5-99743F12A955@fugue.com> <20180125203549.GD3322@mournblade.imrryr.org> <95B1FF6E-A9C3-4679-BE15-2066B9030CD6@fugue.com> <CANV=THh6bOxd_UW=TuLonWzz0KyGapkGWpMiNuu54W=45gFAvg@mail.gmail.com> <20180124205620.GZ3322@mournblade.imrryr.org> <alpine.DEB.2.11.1801251558440.5022@grey.csi.cam.ac.uk> <20180125203225.GC3322@mournblade.imrryr.org> <20180126004807.GE3322@mournblade.imrryr.org>
To: dnsop@ietf.org
In-Reply-To: <20180126004807.GE3322@mournblade.imrryr.org>
Message-Id: <D34C1BCF-E281-4167-89C6-CFFA12191707@fugue.com>
X-Mailer: Apple Mail (2.3445.5.20)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/jZMdfXYF5crRHpl5kD03PuGJHkg>
Subject: Re: [DNSOP] WGLC for draft-ietf-dnsop-let-localhost-be-localhost-02
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 26 Jan 2018 01:17:45 -0000

On Jan 25, 2018, at 7:48 PM, Viktor Dukhovni <ietf-dane@dukhovni.org> wrote:
> See my other upstream message quoted below.  There are deployed
> uses of local "localhost" zones, and a mandate to break them is
> not well motivated in this draft.

Okay, so if I understand you correctly, you are saying that:

Rather than setting up a unique domain name to solve a problem you had with postfix, you used localhost, for convenience
You believe that this practice, or similar practices, are widespread

I think you acknowledge that you can still do this hack even if the document says you mustn't.

You also propose that recursive resolvers not forward localhost, but then there's actually no way to reply with anything other than NXDOMAIN, because a recursive resolver won't have authoritative information.   Maybe you mean a hybrid server that is recursive for domains for which it isn't authoritative?

Is there more?

v2.23.0 | Report a Bug | By Email