IETF Logo Mail Archive

Re: [DNSOP] New draft, seeking comments: draft-sah-resolver-information

Töma Gavrichenkov <ximaera@gmail.com> Sat, 04 May 2019 12:13 UTC

Return-Path: <ximaera@gmail.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 46CDC120044 for <dnsop@ietfa.amsl.com>; Sat, 4 May 2019 05:13:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id C9CQlWAQRO7k for <dnsop@ietfa.amsl.com>; Sat, 4 May 2019 05:13:19 -0700 (PDT)
Received: from mail-yw1-xc2b.google.com (mail-yw1-xc2b.google.com [IPv6:2607:f8b0:4864:20::c2b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6848B120026 for <dnsop@ietf.org>; Sat, 4 May 2019 05:13:19 -0700 (PDT)
Received: by mail-yw1-xc2b.google.com with SMTP id y131so6537640ywa.9 for <dnsop@ietf.org>; Sat, 04 May 2019 05:13:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=xFM2YyiYwJh+Y/QdYfcE2KANfsVgHw96cWndWC3toRA=; b=hgXpTm7aI1oMXY8n4aF9xDpcmuF4+jRXORuuuGUf7LZCJNzSZ5tzXRvvZLXPRlvR/3 QxAovnpM9VigAtBV9RTYmtRZHLn7Ty4zcwCiIVqARTiljY5xRRjGgqXYdLH/DxewPHfF dCfEQwvRF+QXBUqgJcHgCVK6/Jb5LUq78J2mqJKOcYASaBV2EGYzhL0Ppy4dhQufE+pc CRE4gN735gRP4fFZdjxm5eyRN0fpfGgg6aD0izkR4UWM29b+y+eixXt7vULucAipRiWi PIjijREOWbUcdmauofQYKFUUuhMfMC/RQAXn2IHBamdxISbXck5TJEo+NN+uU+YB6lkW dl6w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=xFM2YyiYwJh+Y/QdYfcE2KANfsVgHw96cWndWC3toRA=; b=STn+vAvcsOnqJKJrZAclPbJbSHjwxDwIlLoJ2+xfUE6lCeHsFLAjDkUdNK+4f9A/Q0 6V+/STCQN0CGV6IgvLCPQVNcUcOwLMw1XX6Ryct4IRT/03N0oDMpAC9vsB6/fx4x1wbk CBAiGQwWN7TX8S0DVWYkMTgaMNvNDQ6MR9L6XQ4ZR1+ueFGb8RK/uNEsSCeqATe6tDC2 NCOSvyhEm1iOju7P8wLGr0svhxYxsHV4V6PWamqfX4ABPbINrE262vZ3zsGktzOUhgeq ml4/YBftWH+5qhxqKm9DmgG1cj38FZTlheY0V7VoutvjrHYAGgRkVG+BOHOWUMCWbBfH vf3A==
X-Gm-Message-State: APjAAAUPlrQlhdhVoGsSm38XwVPoL6exmI+1L2+t6JayK8CQrOXfjYju NA4IkmgC7NPNqmJCmtUksAKp2RBaBuCqxLtVWCo=
X-Google-Smtp-Source: APXvYqw84uNDWdcozFY508KBHeoOUIa6CbWbW6cblo3ksJZg3dIYT8sZRogGIHQ9KuVo7WYmp9elzkO8D80glDRgF58=
X-Received: by 2002:a25:814e:: with SMTP id j14mr10789365ybm.482.1556971998362; Sat, 04 May 2019 05:13:18 -0700 (PDT)
MIME-Version: 1.0
References: <6B112B6B-A8B3-46EA-8DE9-8A0535A7B878@icann.org>
In-Reply-To: <6B112B6B-A8B3-46EA-8DE9-8A0535A7B878@icann.org>
From: Töma Gavrichenkov <ximaera@gmail.com>
Date: Sat, 04 May 2019 15:13:06 +0300
Message-ID: <CALZ3u+Zh48LNRHdFGB0BvfffP1ffwGX24W2oZBRaSd33csz1Ww@mail.gmail.com>
To: Paul Hoffman <paul.hoffman@icann.org>
Cc: dnsop <dnsop@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000e342ac05880ecae2"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/pkaaDhsWK5UHqpuX-moWugRyF_Q>
Subject: Re: [DNSOP] New draft, seeking comments: draft-sah-resolver-information
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 04 May 2019 12:13:21 -0000

On Wed, May 1, 2019, 12:10 AM Paul Hoffman <paul.hoffman@icann.org> wrote:

> Greetings again. Puneet, Roy and I have just published a -00 with an idea
> for how to get information about a recursive resolver from the resolver, if
> it wants to give that information.
>

The draft assumes that both the recursive resolver and the stub resolver
must be updated to support this. IMO it is safe to go one step further and
just also assume that both updated resolvers also support DoT, and the
concerned stub resolver should then use it to connect to a resolver if the
latter is nowhere to be found in RFC 6890.

Otherwise you would probably have to assume that all the middleboxes are
also updated to support sudden JSON in the RESINFO responses without simply
dropping it as e.g. likely malware-ish, or just suspicious. And then those
middleboxes would also probably want to take part in the game which would
also mess things up.

--
Töma

>

v2.23.0 | Report a Bug | By Email