Re: [DNSOP] Some distinctions and a request - Have some class?
Evan Hunt <each@isc.org> Sun, 05 July 2015 17:16 UTC
Return-Path: <each@isc.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AF6B71A1BB3 for <dnsop@ietfa.amsl.com>; Sun, 5 Jul 2015 10:16:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.911
X-Spam-Level:
X-Spam-Status: No, score=-6.911 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LcqSv0pk3OA8 for <dnsop@ietfa.amsl.com>; Sun, 5 Jul 2015 10:16:09 -0700 (PDT)
Received: from mx.ams1.isc.org (mx.ams1.isc.org [199.6.1.65]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5FBD51A1B92 for <dnsop@ietf.org>; Sun, 5 Jul 2015 10:16:09 -0700 (PDT)
Received: from bikeshed.isc.org (bikeshed.isc.org [149.20.48.19]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (Client CN "mail.isc.org", Issuer "RapidSSL CA" (not verified)) by mx.ams1.isc.org (Postfix) with ESMTPS id A49581FCAB2; Sun, 5 Jul 2015 17:16:06 +0000 (UTC)
Received: by bikeshed.isc.org (Postfix, from userid 10292) id 76980216C57; Sun, 5 Jul 2015 17:16:05 +0000 (UTC)
Date: Sun, 05 Jul 2015 17:16:05 +0000
From: Evan Hunt <each@isc.org>
To: Andrew Sullivan <ajs@anvilwalrusden.com>
Message-ID: <20150705171605.GA85633@isc.org>
References: <6CB05D82CE245B4083BBF3B97E2ED470C27602@ait-pex01mbx01.win.dtu.dk> <88E49F4B-64BD-4832-BD02-D1A882874E92@karoshi.com> <20150702234423.GB23022@mycre.ws> <EBDBDD70-046F-4E31-BDAC-A619EECD4F13@karoshi.com> <20150703012146.GA29948@mycre.ws> <DC13E07F-2203-4FE9-A67F-B5851A54298F@karoshi.com> <986E07DA-B174-4F81-BFB5-F5EAD46C506F@karoshi.com> <20150705003514.GD48722@mx2.yitter.info> <5598D9EF.7000006@bellis.me.uk> <20150705144440.GB49476@mx2.yitter.info>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <20150705144440.GB49476@mx2.yitter.info>
User-Agent: Mutt/1.5.23 (2014-03-12)
Archived-At: <http://mailarchive.ietf.org/arch/msg/dnsop/qDjpT6joQ77RoE4QE82Qsm1UJyQ>
Cc: dnsop@ietf.org
Subject: Re: [DNSOP] Some distinctions and a request - Have some class?
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 05 Jul 2015 17:16:10 -0000
On Sun, Jul 05, 2015 at 10:44:40AM -0400, Andrew Sullivan wrote: > Imagine the alternative-resolution class FAKE. In the IN class, > example.com has a DNAME entry pointing to example.net. What should > happen when someone performs a query for QNAME localentry.example.com, > TYPE AAAA, and CLASS FAKE? What *should* happen, IMHO, is the DNAME shouldn't come into consideration because it only exists in class IN. localentry.example.com/FAKE/AAAA is in a different namespace entirely, and a query for it should never reach the example.com/IN zone. What *does* happen is unclear; maybe nothing. To the best of my knowledge, nobody currently uses non-IN namespaces except for strictly local authoritative data such as version.bind/CHAOS/TXT. I'm not sure whether it's even theoretically possible to do more than that today; in any case it hasn't gotten much attention from implementors or operators, so if the code exists, it's not being exercised. Non-IN delegation and recursion probably aren't adequately specified, certainly aren't adequately tested, and if my interpretation above is correct, they'd imply a need for a ./FAKE root zone alongside the ./IN one, which opens up multiple cans of distressingly wiggly worms. However, I can imagine a mechanism in which a query for some.tld/FAKE instructs the local resolver to use an alternate resolution mechanism for some.tld, with the DNS protocol being used only for that first hop. This might be suitable for things like .onion. -- Evan Hunt -- each@isc.org Internet Systems Consortium, Inc.
- Re: [DNSOP] back to: Some distinctions and a requ… Hugo Maxwell Connery
- Re: [DNSOP] back to: Some distinctions and a requ… Edward Lewis
- Re: [DNSOP] back to: Some distinctions and a requ… Hugo Maxwell Connery
- Re: [DNSOP] back to: Some distinctions and a requ… manning
- Re: [DNSOP] back to: Some distinctions and a requ… Hugo Maxwell Connery
- Re: [DNSOP] back to: Some distinctions and a requ… manning
- Re: [DNSOP] back to: Some distinctions and a requ… Paul Vixie
- Re: [DNSOP] back to: Some distinctions and a requ… Edward Lewis
- Re: [DNSOP] back to: Some distinctions and a requ… Edward Lewis
- Re: [DNSOP] back to: Some distinctions and a requ… Mark Andrews
- Re: [DNSOP] back to: Some distinctions and a requ… Andrew Sullivan
- Re: [DNSOP] back to: Some distinctions and a requ… manning
- Re: [DNSOP] back to: Some distinctions and a requ… Robert Edmonds
- Re: [DNSOP] back to: Some distinctions and a requ… manning
- Re: [DNSOP] back to: Some distinctions and a requ… Robert Edmonds
- Re: [DNSOP] back to: Some distinctions and a requ… manning
- Re: [DNSOP] back to: Some distinctions and a requ… Robert Edmonds
- Re: [DNSOP] back to: Some distinctions and a requ… manning
- Re: [DNSOP] Some distinctions and a request - Hav… manning
- Re: [DNSOP] Some distinctions and a request - Hav… Warren Kumari
- Re: [DNSOP] Some distinctions and a request - Hav… manning
- Re: [DNSOP] Some distinctions and a request - Hav… Patrik Fältström
- Re: [DNSOP] Some distinctions and a request - Hav… Hugo Maxwell Connery
- Re: [DNSOP] Some distinctions and a request - Hav… manning
- Re: [DNSOP] Some distinctions and a request - Hav… joel jaeggli
- Re: [DNSOP] Some distinctions and a request - Hav… Suzanne Woolf
- Re: [DNSOP] Some distinctions and a request - Hav… manning
- Re: [DNSOP] Some distinctions and a request - Hav… Warren Kumari
- Re: [DNSOP] Some distinctions and a request - Hav… Patrik Fältström
- Re: [DNSOP] Some distinctions and a request - Hav… manning
- Re: [DNSOP] Some distinctions and a request - Hav… Paul Ferguson
- Re: [DNSOP] Some distinctions and a request - Hav… John Levine
- Re: [DNSOP] Some distinctions and a request - Hav… Patrik Fältström
- Re: [DNSOP] Some distinctions and a request - Hav… Patrik Fältström
- Re: [DNSOP] Some distinctions and a request - Hav… Steve Crocker
- Re: [DNSOP] Some distinctions and a request - Hav… Suzanne Woolf
- Re: [DNSOP] Some distinctions and a request - Hav… Patrik Fältström
- Re: [DNSOP] Some distinctions and a request - Hav… Andrew Sullivan
- [DNSOP] Top level names -- precision re categorie… Steve Crocker
- Re: [DNSOP] Some distinctions and a request - Hav… John R Levine
- Re: [DNSOP] Some distinctions and a request - Hav… Ray Bellis
- Re: [DNSOP] Some distinctions and a request - Hav… Stephane Bortzmeyer
- Re: [DNSOP] Some distinctions and a request - Hav… Steve Crocker
- Re: [DNSOP] Some distinctions and a request - Hav… P Vixie
- Re: [DNSOP] Some distinctions and a request - Hav… P Vixie
- Re: [DNSOP] Some distinctions and a request - Hav… Steve Crocker
- Re: [DNSOP] Some distinctions and a request - Hav… Stephane Bortzmeyer
- Re: [DNSOP] Some distinctions and a request - Hav… Andrew Sullivan
- Re: [DNSOP] Some distinctions and a request - Hav… Evan Hunt
- Re: [DNSOP] Some distinctions and a request - Hav… Ray Bellis
- Re: [DNSOP] Some distinctions and a request - Hav… Andrew Sullivan
- Re: [DNSOP] Some distinctions and a request - Hav… manning
- Re: [DNSOP] Some distinctions and a request - Hav… Evan Hunt
- Re: [DNSOP] Some distinctions and a request - Hav… Andrew Sullivan
- Re: [DNSOP] Top level names -- precision re categ… Jaap Akkerhuis
- Re: [DNSOP] Top level names -- precision re categ… Steve Crocker