Re: [DNSOP] New Version Notification for draft-pusateri-dnsop-update-timeout-00.txt

Paul Vixie <vixie@fsi.io> Sat, 25 August 2018 17:57 UTC

Return-Path: <vixie@fsi.io>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D5508130DE4 for <dnsop@ietfa.amsl.com>; Sat, 25 Aug 2018 10:57:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zEVkhAqD8537 for <dnsop@ietfa.amsl.com>; Sat, 25 Aug 2018 10:57:22 -0700 (PDT)
Received: from mail.fsi.io (mail.fsi.io [104.244.13.188]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 09290127333 for <dnsop@ietf.org>; Sat, 25 Aug 2018 10:57:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at fsi.io
Sender: vixie@fsi.io
Received: from linux-9daj.localnet (dhcp-181.access.lah1.vix.su [24.104.150.181]) (Authenticated sender: vixie) by mail.fsi.io (Postfix) with ESMTPSA id 23300608BA; Sat, 25 Aug 2018 17:57:17 +0000 (UTC)
From: Paul Vixie <vixie@fsi.io>
To: dnsop@ietf.org
Cc: Ted Lemon <mellon@fugue.com>, Mark Andrews <marka@isc.org>, Tom Pusateri <pusateri@bangj.com>
Date: Sat, 25 Aug 2018 17:57:17 +0000
Message-ID: <3805826.VrQqsmUkMF@linux-9daj>
Organization: Farsight Security, Inc.
In-Reply-To: <CAPt1N1kp8Tg5tWEiDCMuMNTmehRsBSkkC1=u+RcvkG6ZCegE-g@mail.gmail.com>
References: <153507165910.12116.7113196606839876181.idtracker@ietfa.amsl.com> <99FA0B76-D225-45FC-A33C-B65E2673A45E@isc.org> <CAPt1N1kp8Tg5tWEiDCMuMNTmehRsBSkkC1=u+RcvkG6ZCegE-g@mail.gmail.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 7Bit
Content-Type: text/plain; charset="us-ascii"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/ppvnmJlWhse14eNRaYfI1VXIt60>
Subject: Re: [DNSOP] New Version Notification for draft-pusateri-dnsop-update-timeout-00.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 25 Aug 2018 17:57:24 -0000

On Saturday, August 25, 2018 12:53:01 PM UTC Ted Lemon wrote:
> I'm not saying nobody does it.   I'm trying to understand how this helps.

in my own experience, nothing which needs a hostname (so, having an AAAA and 
PTR RR) doesn't have a static address. if an address is handed out by SLAAC or 
by DHCP, it initiates connections but does not respond to any. i realize that 
there are other modes of being, but that's mine.

furthermore i go to some length to de-automate PTR creation by ISP's. there 
are lists of auto-generated PTR base domains (d.c.b.a.in-addr.arpa pointing to 
host-a-b-c-d.isp.net) that i wish to treat as nonexistent for the purpose of 
choosing whether to receive high value connections (like to my SMTP server). 
it would be better for me if these automated PTR's did not work. no web server 
will ever reject PTR-less connections, so, outbound connections will mostly 
still work, just not for my SMTP server. i realize that there are other modes 
of being, but that's mine.

i have no objection to having other DHCP servers (not the ones i run) 
registering PTR's for its assignments. that's why i wrote DEFUPD in 1996. i 
just don't expect to use DEFUPD in my own servers. that's why DEFUPD solves a 
more general problem (asynchronous DNS updates in general, not just expiry.) 
that URL again for those historians who missed it:

http://family.redbarn.org/~vixie/defupd.txt

-- 
Vixie