IETF Logo Mail Archive

[DNSOP] Re: [Ext] Re: [EXTERNAL] Re: Call for Adoption: draft-davies-internal-tld

Philip Homburg <pch-dnsop-6@u-1.phicoh.com> Tue, 06 May 2025 08:27 UTC

Return-Path: <pch-b6CAFA0C7@u-1.phicoh.com>
X-Original-To: dnsop@mail2.ietf.org
Delivered-To: dnsop@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 59C20253DF30 for <dnsop@mail2.ietf.org>; Tue, 6 May 2025 01:27:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6wkcYetfYYXI for <dnsop@mail2.ietf.org>; Tue, 6 May 2025 01:27:01 -0700 (PDT)
Received: from stereo.hq.phicoh.net (stereo.hq.phicoh.net [IPv6:2a10:3781:2413:1:2a0:c9ff:fe9f:17a9]) (using TLSv1.2 with cipher ECDHE-ECDSA-CHACHA20-POLY1305 (256/256 bits)) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 7BCBE253DF2B for <dnsop@ietf.org>; Tue, 6 May 2025 01:27:01 -0700 (PDT)
Received: from stereo.hq.phicoh.net (localhost [::ffff:127.0.0.1]) by stereo.hq.phicoh.net with esmtp (TLS version=TLSv1.2 cipher=ECDHE-ECDSA-CHACHA20-POLY1305) (Smail #158) id m1uCDdk-0000LlC; Tue, 6 May 2025 10:27:00 +0200
Message-Id: <m1uCDdk-0000LlC@stereo.hq.phicoh.net>
To: dnsop@ietf.org
From: Philip Homburg <pch-dnsop-6@u-1.phicoh.com>
Sender: pch-b6CAFA0C7@u-1.phicoh.com
References: <1C9E8ABA-4399-491B-A9F4-D9ACCB1BA72C@virtualized.org> <866409E5-0D9A-4669-8C6E-C9D1C7BDAA21@dnss.ec> <SA1PR15MB4370BAE2BD669193DDB9AE44B38D2@SA1PR15MB4370.namprd15.prod.outlook.com> <20250502171756.5AC67C762C3C@ary.qy> <SA1PR15MB43704113DF8B19A8A5A66AD6B38D2@SA1PR15MB4370.namprd15.prod.outlook.com> <4B83E121-9562-449C-A00E-2A31894ADED0@icann.org> <m1uBDWf-0000MlC@stereo.hq.phicoh.net> <9EE8E4CC-04A3-46C7-BDDF-EF538A822AA8@virtualized.org> <m1uBHRs-0000LsC@stereo.hq.phicoh.net> <BE3A5560-740A-47A9-835B-8C8EEF2B50B9@virtualized.org>
In-reply-to: Your message of "Mon, 05 May 2025 23:17:30 +0000 ." <BE3A5560-740A-47A9-835B-8C8EEF2B50B9@virtualized.org>
Date: Tue, 06 May 2025 10:26:59 +0200
Message-ID-Hash: 56QEQOQGFPYNJCQDEAGQALUW4QRTGNM5
X-Message-ID-Hash: 56QEQOQGFPYNJCQDEAGQALUW4QRTGNM5
X-MailFrom: pch-b6CAFA0C7@u-1.phicoh.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dnsop.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: David Conrad <drc@virtualized.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [DNSOP] Re: [Ext] Re: [EXTERNAL] Re: Call for Adoption: draft-davies-internal-tld
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/qrZDBF-mfQoYRExnAD9O-Ii-t-k>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Owner: <mailto:dnsop-owner@ietf.org>
List-Post: <mailto:dnsop@ietf.org>
List-Subscribe: <mailto:dnsop-join@ietf.org>
List-Unsubscribe: <mailto:dnsop-leave@ietf.org>

> >> The problem starts when a standards track document promotes a name that
> >> does not exist for some purposes.
> 
> 
> My references to 2606 (not 2605 as you noted), 7686, and 9476 were
> to point out that the IETF has, for quite some time, documented (I
> dont believe documenting something is equivalent to promoting it,
> but that may just be me) a number of domain names that "do not
> exist for some purpose, all of which are now included in
> https://www.iana.org/assignments/special-use-domain-names/special-use-domain-
> names.xhtml.
> I fail to see the problem such documentation causes.
> 
> I did not say .internal (or any of the others) should or should
> not be in the (public) DNS, rather I suggested that contrary to
> your assertion, problems start when users make assumptions about
> names that do not exist (within the DNS being implied). I personally
> believe having the documents that explain the intended use of
> particular names in one place is better than having them in random
> places known largely via lore, but YMMV.

By now the IETF has quite a long list of names that do not exist in DNS,
but let me focus on two of them: .onion and .alt.

Without re-opening the discussion about .onion it is safe to say that
the onion protocol provides privacy and anonimity and it would be a problem
if queries for .onion would leak to the internet. For this reason .onion
is special, not because it doesn't exist but to encourage DNS resolvers to
filter .onion queries and not try to resolve them.

The .alt domain is special for a different reason. The purpose for .alt is
to allocate a namespace for protocols that are not DNS. The DNS namespace
is (mostly) maintained by ICANN. .alt creates a separate space to avoid
conflicts.

So what does .internal have to make it so special that it warrents its own
RFC? It is reserved by ICANN. That's it. ICANN reserved it for a 
specific purpose, but does that warrant special treatment at the protocol
level? 

But my main requirement is that if we publish a standards track document
then it should not lead to DNSSEC validation errors or have requirements
where mobile DNSSEC validators magically add (negative) trust anchors
depending on which network the device is currently connected to.

v2.31.3 | Report a Bug | By Email | System Status