[DNSOP] draft-moura-dnsop-negative-cache-loop
"Giovane C. M. Moura" <giovane.moura@sidn.nl> Mon, 08 November 2021 07:49 UTC
Return-Path: <giovane.moura@sidn.nl>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5AB633A046A for <dnsop@ietfa.amsl.com>; Sun, 7 Nov 2021 23:49:19 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.1
X-Spam-Level:
X-Spam-Status: No, score=-1.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, MSGID_FROM_MTA_HEADER=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URI_DOTEDU=1] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=sidn.nl
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4kcKURxkNt6L for <dnsop@ietfa.amsl.com>; Sun, 7 Nov 2021 23:49:14 -0800 (PST)
Received: from EUR05-DB8-obe.outbound.protection.outlook.com (mail-db8eur05on2062.outbound.protection.outlook.com [40.107.20.62]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F009F3A041C for <DNSOP@ietf.org>; Sun, 7 Nov 2021 23:49:10 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=M77chvMp1cl1yTYHiYYuhhOKGDnsvRWL6ky5Q2XpGMVhCQswoMQfSiB9hhRvy4p2JYkzdKBKUIek7JCIG9b6YeowRHEj6wMI7IsoyDD0s0BZTwsLVslzhSBSXsaqJUeLJ6f/R2QutMnT6btqbDDgfallE94Md2Y7iO1j3mOcF/sl4mqM26cq2SV4Vquwgmtxj3aXnFYLGFalX6C60Flb7BKx1fkZGzZd36ZtNaBB4qgsMm7BMPLc0OmAB81wdMk5chpqUKzAjDuYmcl4CJRisojS2I02YMhnN2Ul02THJ5US51i18j4o+LiJd16wqRslu7kbRIsh1LTX99bsAG43EA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=8U6PzrCnZH/F4kvrvc05dK2vkkd7G9oobj9uq4l5YgA=; b=l+XtUAyxhrqI6aZmWc+BIuiJAistzW5fUU+yKCirflRoU4risVpzlLwem1o/k2og0ahPOnSdizSYHOFHbaIWKGItstXAtMxIsxmkv2Q6wPjeVzQ6Dptz87C/HEJv8u0+9l5doQaEQ66zdhJ0prZmghBWtfqGiD+AhTujr32zLnV4UECeKdngLF+AypK2sfVCUeDws7HUpVrgxw+CQu0KIwxECq29Ty09wc8V+xMyBtcbHYI55JBAg8X9QSVrBLaHTZZxuBT+ZDAGIsjinY61+qtQZty9g/vj4JqD8ArpRpk76+WbDXyivZR4IAbmzwMg/JYgZFeShhQQv2NFRlHEZg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=sidn.nl; dmarc=pass action=none header.from=sidn.nl; dkim=pass header.d=sidn.nl; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sidn.nl; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=8U6PzrCnZH/F4kvrvc05dK2vkkd7G9oobj9uq4l5YgA=; b=IBCSNIRKkvqYTXyUC+kqsUGtikCTqJ/4ZutyUGTew/Fy11m1tymKnzvB6kVNCh4GyToqovmCyUY3zBDrktZ1tzmuPn9S8PVhGKaGoQIgs2E0L3myh1lPbygyZe1SXpgSgM6wt5z/4RiQFCf28b7JYuWxcpHRdr92HzW8Hl8F/Qw=
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=sidn.nl;
Received: from AM0P194MB0257.EURP194.PROD.OUTLOOK.COM (2603:10a6:208:61::31) by AM8P194MB1139.EURP194.PROD.OUTLOOK.COM (2603:10a6:20b:24d::20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4669.11; Mon, 8 Nov 2021 07:49:04 +0000
Received: from AM0P194MB0257.EURP194.PROD.OUTLOOK.COM ([fe80::116a:5021:45d5:152e]) by AM0P194MB0257.EURP194.PROD.OUTLOOK.COM ([fe80::116a:5021:45d5:152e%5]) with mapi id 15.20.4669.015; Mon, 8 Nov 2021 07:49:04 +0000
From: "Giovane C. M. Moura" <giovane.moura@sidn.nl>
To: IETF DNSOP WG <DNSOP@ietf.org>
Message-ID: <c562797c-3ade-9d00-82be-e42d4f45ec11@sidn.nl>
Date: Mon, 08 Nov 2021 08:49:03 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.14.0
Content-Type: text/plain; charset="utf-8"
Content-Language: en-US
Content-Transfer-Encoding: 8bit
X-ClientProxiedBy: AM0PR06CA0127.eurprd06.prod.outlook.com (2603:10a6:208:ab::32) To AM0P194MB0257.EURP194.PROD.OUTLOOK.COM (2603:10a6:208:61::31)
MIME-Version: 1.0
Received: from [192.168.1.172] (31.21.111.111) by AM0PR06CA0127.eurprd06.prod.outlook.com (2603:10a6:208:ab::32) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4669.10 via Frontend Transport; Mon, 8 Nov 2021 07:49:03 +0000
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 7f8d3fda-2e67-4e29-900d-08d9a28c3c3d
X-MS-TrafficTypeDiagnostic: AM8P194MB1139:
X-Microsoft-Antispam-PRVS: <AM8P194MB1139665C565C7F09B5BE69B0F1919@AM8P194MB1139.EURP194.PROD.OUTLOOK.COM>
X-MS-Oob-TLC-OOBClassifiers: OLM:8882;
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM0P194MB0257.EURP194.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(4636009)(366004)(2906002)(956004)(31696002)(186003)(5660300002)(966005)(508600001)(8676002)(52116002)(26005)(31686004)(66946007)(2616005)(38100700002)(316002)(38350700002)(6916009)(66556008)(36756003)(6486002)(86362001)(66476007)(16576012)(8936002)(83380400001)(45980500001)(43740500002); DIR:OUT; SFP:1101;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: sidn.nl
X-MS-Exchange-CrossTenant-Network-Message-Id: 7f8d3fda-2e67-4e29-900d-08d9a28c3c3d
X-MS-Exchange-CrossTenant-AuthSource: AM0P194MB0257.EURP194.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 08 Nov 2021 07:49:04.0903 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: ab4d3626-c1c5-4a75-ab85-427f1a644a7d
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: PpZ6sQEod9SyThBtRLuSBZy9Pd//mKINkelgYaG9WxYfQia4dj++mnuDkdkV1MMwUGPhV6Me1SYo2Q6yW4gP0g==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM8P194MB1139
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/qukDGhBgsA8R8kSAC059vSPMdTo>
Subject: [DNSOP] draft-moura-dnsop-negative-cache-loop
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 08 Nov 2021 07:49:19 -0000
Folks, Loops in DNS are an old problem, but as our tsuname[0,1] disclosure last May shows, they are still a problem. We wrote a new draft that adds a new requirement to existing solutions: recursive resolvers must detect and negative cache problematic (loop) records. It would be nice to hear what folks have to say. Thanks, /giovane Giovane C.M. Moura SIDN Labs [0] https://tsuname.io [1] https://www.isi.edu/~johnh/PAPERS/Moura21b.pdf ------ A new version of I-D, draft-moura-dnsop-negative-cache-loop-00.txt has been successfully submitted by Giovane C. M. Moura and posted to the IETF repository. Name: draft-moura-dnsop-negative-cache-loop Revision: 00 Title: Negative Caching of Looping NS records Document date: 2021-11-08 Group: Individual Submission Pages: 8 URL: https://www.ietf.org/archive/id/draft-moura-dnsop-negative-cache-loop-00.txt Status: https://datatracker.ietf.org/doc/draft-moura-dnsop-negative-cache-loop/ Htmlized: https://datatracker.ietf.org/doc/html/draft-moura-dnsop-negative-cache-loop Abstract: This document updates guidance about detecting DNS loops in recursive resolver algorithms with new requirements to require recursive resolvers to detect loops and to implement negative caches. The IETF Secretariat
- [DNSOP] draft-moura-dnsop-negative-cache-loop Giovane C. M. Moura
- Re: [DNSOP] draft-moura-dnsop-negative-cache-loop Petr Špaček
- Re: [DNSOP] draft-moura-dnsop-negative-cache-loop Ralf Weber
- Re: [DNSOP] draft-moura-dnsop-negative-cache-loop Giovane C. M. Moura
- Re: [DNSOP] draft-moura-dnsop-negative-cache-loop Giovane C. M. Moura
- Re: [DNSOP] draft-moura-dnsop-negative-cache-loop Petr Špaček
- Re: [DNSOP] draft-moura-dnsop-negative-cache-loop Stephane Bortzmeyer