IETF Logo Mail Archive

Re: [DNSOP] followup and proposed actions: RFC 6761 interim and next steps

Francisco Obispo <fobispo@uniregistry.com> Tue, 26 May 2015 21:19 UTC

Return-Path: <fobispo@uniregistry.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 459FA1B31D6 for <dnsop@ietfa.amsl.com>; Tue, 26 May 2015 14:19:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.7
X-Spam-Level:
X-Spam-Status: No, score=0.7 tagged_above=-999 required=5 tests=[BAYES_05=-0.5, HTML_MESSAGE=0.001, J_CHICKENPOX_64=0.6, J_CHICKENPOX_74=0.6, SPF_PASS=-0.001, T_REMOTE_IMAGE=0.01, T_RP_MATCHES_RCVD=-0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wmz_F5HwHO68 for <dnsop@ietfa.amsl.com>; Tue, 26 May 2015 14:19:40 -0700 (PDT)
Received: from zimbra1.uniregistry.com (zimbra1.uniregistry.com [162.221.214.42]) by ietfa.amsl.com (Postfix) with ESMTP id 252AA1B31A7 for <dnsop@ietf.org>; Tue, 26 May 2015 14:19:40 -0700 (PDT)
Received: from zimbra1.uniregistry.com (localhost [127.0.0.1]) by zimbra1.uniregistry.com (Postfix) with ESMTP id 166BE3266E7; Tue, 26 May 2015 21:19:38 +0000 (UTC)
Received: from zimbra1.uniregistry.com (localhost [127.0.0.1]) by zimbra1.uniregistry.com (Postfix) with ESMTP id 071BE3267BA; Tue, 26 May 2015 21:19:38 +0000 (UTC)
Received: from [64.96.164.20] (unknown [64.96.164.20]) by zimbra1.uniregistry.com (Postfix) with ESMTPSA id 89D723266E7; Tue, 26 May 2015 21:19:36 +0000 (UTC)
Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2098\))
Content-Type: multipart/signed; boundary="Apple-Mail=_48E526F6-E1D7-4F8E-BCC9-BF49A73EF5F3"; protocol="application/pgp-signature"; micalg="pgp-sha256"
X-Pgp-Agent: GPGMail 2.5b6
From: Francisco Obispo <fobispo@uniregistry.com>
In-Reply-To: <20150526200703.15413.qmail@ary.lan>
Date: Tue, 26 May 2015 14:19:33 -0700
Message-Id: <3B05F60A-8865-45B8-A36C-042E0F5CC92C@uniregistry.com>
References: <20150526200703.15413.qmail@ary.lan>
To: John Levine <johnl@taugh.com>
X-Mailer: Apple Mail (2.2098)
Archived-At: <http://mailarchive.ietf.org/arch/msg/dnsop/nQ1XYOwPNAeOT86LIthAhukaG-o>
Cc: dnsop@ietf.org
Subject: Re: [DNSOP] followup and proposed actions: RFC 6761 interim and next steps
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 26 May 2015 21:19:42 -0000

> On May 26, 2015, at 1:07 PM, John Levine <johnl@taugh.com> wrote:
> 
>> I believe the delegation of HOME/CORP/MAIL provides with more benefit than risks, there
>> will be more companies/homes and mail users happy because their names resolve from
>> everywhere, they can validate with DNSSEC, they can opt who can connect to their
>> networks and no longer require domain hacks to get their users to go to the right
>> places.
> 
> There are probably tens of thousands of people who have a device with
> the local name PRINTER.HOME.  I must be dim, because I cannnot imagine
> any way that any possible set of DNS records in the root or a TLD
> would allow that name to "resolve from everywhere" in a way other than
> perhaps one that sent an enormous amount of people's printouts to one
> printer somewhere.
> 
> Could you clarify how it's supposed to work?
> 

I would certainly like to have: obispo.home, be a real FQDN, so I can name my home devices, printer.obispo.home, etc.

If I go to a hotel around the world and I need to print in my printer at home, I should be able to do it, I shouldn’t be “hacking” my way around that. In a v6 world, this is going to be common practice, the fact that we have limitations on how we use our home networks today does not mean that those same restrictions will exist in the future.

Perhaps the approach is (if identified as a problem), to have printer.home be on a controlled interruption list for a while, so people can identify and fix their setups.  I don’t know, but the approach where we ban the whole TLD from ever existing because of few that misconfigured their naming, doesn’t seem reasonable to me. (few compared to the rest of the world who will be connected in the future).

Should we also add a .BELKIN TLD?, there are tons of devices that use it (to name a few), what if in 10 years someone decides to create .FOOBARBAZ are we going to add it to the list later?,

We need a better view/picture of the whole DNS ecosystem, we should not be making assertions based on a 24 hour sample of 1 day of root server traffic, let put more effort into strategy for the long term and not be so tactical about these specific use cases.

Regards,


Francisco Obispo
CTO - Registry Operations
____________________________

 <http://www.uniregistry.com/>
2161 San Joaquin Hills Road
Newport Beach, CA 92660

Office +1 949 706 2300 x4202
fobispo@uniregistry.link

v2.23.0 | Report a Bug | By Email