Re: [DNSOP] Privacy and DNSSEC
Shumon Huque <shuque@gmail.com> Wed, 29 April 2020 15:54 UTC
Return-Path: <shuque@gmail.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EF4963A0101 for <dnsop@ietfa.amsl.com>; Wed, 29 Apr 2020 08:54:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id k0d0nODXW1V5 for <dnsop@ietfa.amsl.com>; Wed, 29 Apr 2020 08:54:48 -0700 (PDT)
Received: from mail-ed1-x531.google.com (mail-ed1-x531.google.com [IPv6:2a00:1450:4864:20::531]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E860C3A005B for <dnsop@ietf.org>; Wed, 29 Apr 2020 08:54:47 -0700 (PDT)
Received: by mail-ed1-x531.google.com with SMTP id f12so1924707edn.12 for <dnsop@ietf.org>; Wed, 29 Apr 2020 08:54:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=LaSndE6HEYMwx6+3cDgOvyAbdLkYrIdXpxl94KP45bA=; b=kdBPqw43bYQI9ulMV4QiKqKnVi6E1TxcdSuByN4QCAR1gWB+FjDvZPJK3ieZrOXgzW QVc22sU5zYrsqpbEnw8I5AuYR3Eh9LHIlS0Yirne39isRV3BEdu5o9oboHSoU59XFcMi XCy1muKs6kiw1sM6GQgKAV93vAnyO2E8fb7jCLfOya9eyh73cqnR1rFgdnX+IsBK+cY5 Gith9BAHBxU+8ntAqlVu8YMOh/wfyoFWcq1FvKDI37Iu8OLAW3whlS4sSo+IOkqo4Ozd F6Mv3t5dnzPjBeDGhb0LP0oy2CqfN5FAF835X8u/sslTEYB1BjQA7jUWumtnAJ6zIMKL 11/w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=LaSndE6HEYMwx6+3cDgOvyAbdLkYrIdXpxl94KP45bA=; b=APiKVu7T22Rk/mpTms8axwHuALvjLKoKA6bB/YC13PcxM+CRAQ1x3wFZdtF3P4dGDU xanIlLFrYJFX+8M3Ww8k0+oR53yqBqVbwevoHLO+lQRv+5wNjMpPYbKH56+KUJdODPhd tgBzQOMZpigRvQNQwutVzu3G3CrU0AoJQugoEU3Ph98za4yfSomXK+jSGDA+HkpLV0y9 Mu6mnvSFfGue/qSN7PFQkA1DI2kEUT2PB0rQ9PJadkjGq4jWXLHNe+3aPa0Z5T82Mn/t +25lP6BTnwdlYTht/lOOMlfyoCmIEp47Fr9K28n/UGQuNYZ2oO5mHbw2TfYvQzcPVsmw yZJg==
X-Gm-Message-State: AGi0PuaoBIGqqKh5q+OlEL17cv9E0NvHkd6veK6IcPJjBpYhSOL4VLia +gc/S59zIeJyhwqwjlS8B+ODXVd7JCOxZszWG96+REJ/
X-Google-Smtp-Source: APiQypIXuvhy4wSCLKhDbM0wkIXkSCMdUCdBKSu2zsZ2Hq3uXy5QL+Q4t5s1+fTvq4cSWxkyVpzgaxJLm7GBNAwZK58=
X-Received: by 2002:a50:9547:: with SMTP id v7mr3165736eda.324.1588175685929; Wed, 29 Apr 2020 08:54:45 -0700 (PDT)
MIME-Version: 1.0
References: <CAHPuVdV9eSCLQOqMF0cq8fHcuSZs7nCgjhHMfMoaV5H=ekbtSA@mail.gmail.com> <18685549.zqRq8fnmLB@linux-9daj> <CAHPuVdXBaBG27v2hyD1bpp+9YxC5BvTjL5ojqXw7yc17Ufpk7A@mail.gmail.com> <21757930.7KVZAQyxnt@linux-9daj> <alpine.LRH.2.21.2004291129500.21942@bofh.nohats.ca> <CAHPuVdU39Qcg+qDLdqidq5T8f=bH2i-SLEEQ1DRe0M--Sbi21Q@mail.gmail.com>
In-Reply-To: <CAHPuVdU39Qcg+qDLdqidq5T8f=bH2i-SLEEQ1DRe0M--Sbi21Q@mail.gmail.com>
From: Shumon Huque <shuque@gmail.com>
Date: Wed, 29 Apr 2020 11:54:33 -0400
Message-ID: <CAHPuVdXABaLnQaucBtpnjjxuhoxzyDMatEXy5wR=NuyWR3ac6g@mail.gmail.com>
To: "dnsop@ietf.org WG" <dnsop@ietf.org>
Cc: Paul Vixie <paul@redbarn.org>, Paul Wouters <paul@nohats.ca>
Content-Type: multipart/alternative; boundary="00000000000099d03305a46ff717"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/qM6u0mZhLktTcrjIlFOUeS2OAi4>
Subject: Re: [DNSOP] Privacy and DNSSEC
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 29 Apr 2020 15:54:50 -0000
to the list, after Paul Wouters replied to me privately. I realize now this was Paul W responding to Paul V. I thought in my response below I was replying again to Paul V! My apologies .. Shumon. On Wed, Apr 29, 2020 at 11:45 AM Shumon Huque <shuque@gmail.com> wrote: > On Wed, Apr 29, 2020 at 11:34 AM Paul Wouters <paul@nohats.ca> wrote: > >> On Wed, 29 Apr 2020, Paul Vixie wrote: >> >> > no. i mean that the decision to require a "clear path" for DNSSEC meant >> that >> > no DNSSEC-dependent application has ever received investment. for >> example, >> > DANE is interesting in the SMTP market because that's small and geeky, >> but >> > will never be adopted by the Web because there are too many endpoints >> who >> > cannot do stub validation and too many who will never be able to. >> >> You seem to think that the Web(PKI) not accepting DNSSEC was a technical >> problem. While there were technical issues, I don't think the acceptance >> or not had anything to do with technology. >> > > Nope, I'm fully aware of all the non-technical issues and resistance (and > have described some of that in the article). But there were a small > contingent > of web folks that were interested in DANE, and that might have been enough > to gain an initial foothold there. You have to start somewhere. > > Shumon. > > > >
- Re: [DNSOP] New draft on delegation revalidation Mark Andrews
- [DNSOP] New draft on delegation revalidation Shumon Huque
- Re: [DNSOP] New draft on delegation revalidation Bob Harold
- Re: [DNSOP] New draft on delegation revalidation Tim Wicinski
- Re: [DNSOP] New draft on delegation revalidation Brian Dickson
- Re: [DNSOP] New draft on delegation revalidation Shumon Huque
- Re: [DNSOP] New draft on delegation revalidation Stephane Bortzmeyer
- Re: [DNSOP] New draft on delegation revalidation Stephane Bortzmeyer
- Re: [DNSOP] New draft on delegation revalidation Shumon Huque
- Re: [DNSOP] New draft on delegation revalidation Shumon Huque
- Re: [DNSOP] New draft on delegation revalidation John Levine
- Re: [DNSOP] New draft on delegation revalidation Paul Vixie
- Re: [DNSOP] New draft on delegation revalidation Paul Vixie
- Re: [DNSOP] New draft on delegation revalidation Puneet Sood
- Re: [DNSOP] New draft on delegation revalidation Ólafur Guðmundsson
- Re: [DNSOP] New draft on delegation revalidation Shumon Huque
- Re: [DNSOP] New draft on delegation revalidation Shumon Huque
- Re: [DNSOP] New draft on delegation revalidation Shumon Huque
- Re: [DNSOP] New draft on delegation revalidation John R Levine
- Re: [DNSOP] New draft on delegation revalidation Bob Harold
- Re: [DNSOP] New draft on delegation revalidation Gavin McCullagh
- Re: [DNSOP] New draft on delegation revalidation Shumon Huque
- Re: [DNSOP] New draft on delegation revalidation Patrick Mevzek
- Re: [DNSOP] New draft on delegation revalidation Shumon Huque
- Re: [DNSOP] New draft on delegation revalidation Patrick Mevzek
- Re: [DNSOP] New draft on delegation revalidation Shumon Huque
- Re: [DNSOP] New draft on delegation revalidation Joe Abley
- Re: [DNSOP] New draft on delegation revalidation Vladimír Čunát
- Re: [DNSOP] New draft on delegation revalidation Giovane C. M. Moura
- Re: [DNSOP] New draft on delegation revalidation Shumon Huque
- Re: [DNSOP] New draft on delegation revalidation Gavin McCullagh
- Re: [DNSOP] New draft on delegation revalidation Shumon Huque
- Re: [DNSOP] New draft on delegation revalidation Shumon Huque
- Re: [DNSOP] Privacy and DNSSEC Vladimír Čunát
- Re: [DNSOP] Privacy and DNSSEC Paul Vixie
- Re: [DNSOP] Privacy and DNSSEC Masataka Ohta
- Re: [DNSOP] Privacy and DNSSEC Vittorio Bertola
- Re: [DNSOP] New draft on delegation revalidation Joe Abley
- Re: [DNSOP] New draft on delegation revalidation Paul Vixie
- Re: [DNSOP] New draft on delegation revalidation Shumon Huque
- Re: [DNSOP] Privacy and DNSSEC Shumon Huque
- [DNSOP] Client Validation - filtering validation? Brian Dickson
- Re: [DNSOP] Privacy and DNSSEC Paul Vixie
- Re: [DNSOP] Privacy and DNSSEC Mark Andrews
- Re: [DNSOP] New draft on delegation revalidation Giovane C. M. Moura
- Re: [DNSOP] Client Validation - filtering validat… Vittorio Bertola
- Re: [DNSOP] Client Validation - filtering validat… Paul Wouters
- Re: [DNSOP] Client Validation - filtering validat… S Moonesamy
- Re: [DNSOP] Client Validation - filtering validat… John Levine
- Re: [DNSOP] Client Validation - filtering validat… Paul Vixie
- Re: [DNSOP] Privacy and DNSSEC Shumon Huque
- Re: [DNSOP] New draft on delegation revalidation Shumon Huque
- Re: [DNSOP] Privacy and DNSSEC Paul Vixie
- Re: [DNSOP] Privacy and DNSSEC Shumon Huque
- Re: [DNSOP] Privacy and DNSSEC Paul Wouters
- Re: [DNSOP] Privacy and DNSSEC Shumon Huque
- Re: [DNSOP] Privacy and DNSSEC Shumon Huque
- Re: [DNSOP] New draft on delegation revalidation Daniel Migault
- Re: [DNSOP] Privacy and DNSSEC Paul Vixie
- Re: [DNSOP] Privacy and DNSSEC Paul Vixie
- Re: [DNSOP] New draft on delegation revalidation Giovane C. M. Moura
- Re: [DNSOP] New draft on delegation revalidation Shumon Huque
- Re: [DNSOP] New draft on delegation revalidation Daniel Migault
- Re: [DNSOP] New draft on delegation revalidation Giovane C. M. Moura
- Re: [DNSOP] New draft on delegation revalidation Shumon Huque
- Re: [DNSOP] New draft on delegation revalidation Petr Špaček
- Re: [DNSOP] New draft on delegation revalidation Shumon Huque
- Re: [DNSOP] New draft on delegation revalidation Giovane C. M. Moura
- Re: [DNSOP] New draft on delegation revalidation Petr Špaček
- Re: [DNSOP] New draft on delegation revalidation Paul Vixie
- Re: [DNSOP] New draft on delegation revalidation Gavin McCullagh
- Re: [DNSOP] New draft on delegation revalidation Shumon Huque
- Re: [DNSOP] New draft on delegation revalidation Paul Vixie