[DNSOP] [Errata Held for Document Update] RFC7686 (6761)
RFC Errata System <rfc-editor@rfc-editor.org> Wed, 11 June 2025 04:24 UTC
Return-Path: <wwwrun@rfcpa.rfc-editor.org>
X-Original-To: dnsop@ietf.org
Delivered-To: dnsop@mail2.ietf.org
Received: from rfcpa.rfc-editor.org (unknown [167.172.21.234]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id E99433378C2C; Tue, 10 Jun 2025 21:24:54 -0700 (PDT)
Received: by rfcpa.rfc-editor.org (Postfix, from userid 461) id B3CFD27BF74; Tue, 10 Jun 2025 21:24:54 -0700 (PDT)
To: peter.van.dijk@powerdns.com, jacob@appelbaum.net, alecm@fb.com
From: RFC Errata System <rfc-editor@rfc-editor.org>
Content-Type: text/plain; charset="UTF-8"
Message-Id: <20250611042454.B3CFD27BF74@rfcpa.rfc-editor.org>
Date: Tue, 10 Jun 2025 21:24:54 -0700
Message-ID-Hash: NM2VWSAAGRYOQVYADJRI65PYIEDNMGSL
X-Message-ID-Hash: NM2VWSAAGRYOQVYADJRI65PYIEDNMGSL
X-MailFrom: wwwrun@rfcpa.rfc-editor.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dnsop.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: mohamed.boucadair@orange.com, iesg@ietf.org, dnsop@ietf.org, rfc-editor@rfc-editor.org
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [DNSOP] [Errata Held for Document Update] RFC7686 (6761)
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/jwsspaJE3aWr1zeO0cwWw6PKRJg>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Owner: <mailto:dnsop-owner@ietf.org>
List-Post: <mailto:dnsop@ietf.org>
List-Subscribe: <mailto:dnsop-join@ietf.org>
List-Unsubscribe: <mailto:dnsop-leave@ietf.org>
The following errata report has been held for document update for RFC7686, "The ".onion" Special-Use Domain Name". -------------------------------------- You may review the report below and at: https://www.rfc-editor.org/errata/eid6761 -------------------------------------- Status: Held for Document Update Type: Technical Reported by: Peter van Dijk <peter.van.dijk@powerdns.com> Date Reported: 2021-11-29 Held by: Mohamed Boucadair (IESG) Section: 2 Original Text ------------- 5. Authoritative DNS Servers: Authoritative servers MUST respond to queries for .onion with NXDOMAIN. 6. DNS Server Operators: Operators MUST NOT configure an authoritative DNS server to answer queries for .onion. If they do so, client software is likely to ignore any results (see above). Corrected Text -------------- 5. Authoritative DNS Servers: Authoritative servers SHOULD NOT recognize .onion names as special and MUST NOT treat queries for .onion names differently from other queries. 6. DNS Server Operators: Operators MUST NOT configure an authoritative DNS server to answer authoritatively to queries for names in .onion. If they do so, client software is likely to ignore any results (see above). Notes ----- The original text for 5 and 6 is conflicting. A name server cannot respond with NXDOMAIN (which is an authoritative answer) without having a zone configured to serve that NXDOMAIN from. Clearly the intent of the text is that clients will not find authoritative answers to .onion queries anywhere in the DNS. ===Verifier note see https://mailarchive.ietf.org/arch/msg/dnsop/S2mQZ83THHjV0z8A2iXAtG8Vrpc/ -------------------------------------- RFC7686 (draft-ietf-dnsop-onion-tld-01) -------------------------------------- Title : The ".onion" Special-Use Domain Name Publication Date : October 2015 Author(s) : J. Appelbaum, A. Muffett Category : PROPOSED STANDARD Source : Domain Name System Operations Stream : IETF Verifying Party : IESG
- [DNSOP] [Errata Held for Document Update] RFC7686… RFC Errata System