Re: [DNSOP] Draft Reverse DNS in IPv6 for Internet Service Providers

Hosnieh Rafiee <hosnieh.rafiee@huawei.com> Thu, 23 October 2014 11:59 UTC

From: Hosnieh Rafiee <hosnieh.rafiee@huawei.com>
To: Mwendwa Kivuva <Kivuva@transworldafrica.com>, dnsop <dnsop@ietf.org>
Thread-Topic: [DNSOP] Draft Reverse DNS in IPv6 for Internet Service Providers
Thread-Index: AQHP7rPL0KGe3cgDe0WdvohVJ9Z2ypw9kcfQ
Date: Thu, 23 Oct 2014 11:59:03 +0000
Message-ID: <814D0BFB77D95844A01CA29B44CBF8A7A4BDBE@lhreml513-mbb.china.huawei.com>
References: <CAEhPqwq4-b7KzVUnOLYPnm2oOhLGmBNU8tCeGAA+NrZwJEuMyA@mail.gmail.com>
In-Reply-To: <CAEhPqwq4-b7KzVUnOLYPnm2oOhLGmBNU8tCeGAA+NrZwJEuMyA@mail.gmail.com>
Accept-Language: zh-CN, en-US
Content-Language: en-US
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: http://mailarchive.ietf.org/arch/msg/dnsop/sSsNlh-5e1gY7EViFvnHwfMvvaQ
Subject: Re: [DNSOP] Draft Reverse DNS in IPv6 for Internet Service Providers
Precedence: list


and given the weakness of the Reverse DNS access for security purposes, what problem is this draft trying to solve? If we need to find the host that has sent an email associated with an address, would we better let DKIM address that without a separate lookup in the receiving server? DKIM detects email spoofing by using digital signature allowing receiving mail exchangers to check that incoming mail from a domain is authorized by that domain's administrators. 

Is there a better way to approach the problem?

I do not claim it is a best way but I think CGA-TSIG can easily handle many similar scenarios.
You can check the old version here
http://datatracker.ietf.org/doc/draft-rafiee-intarea-cga-tsig/
and upcoming version here
<http://editor.rozanak.com/show.aspx?u=AZCDD03D4DBABD14DA80CDTAM  >

Hosnieh

[DNSOP] Draft Reverse DNS in IPv6 for Internet Se… Mwendwa Kivuva
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Hosnieh Rafiee
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Ted Lemon
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Lee Howard
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Vixie
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Ted Lemon
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Vixie
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Masataka Ohta
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… P Vixie
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Masataka Ohta
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Lee Howard
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Warren Kumari
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Doug Barton
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Mark Andrews
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Ted Lemon
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Doug Barton
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Vixie
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Bob Harold
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Andreas Gustafsson
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… John Levine
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Vixie
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Vixie
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Wouters
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Vixie
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Richard Clayton
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Mark Andrews
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… John Levine
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Wouters
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… John R Levine
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Vixie
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Ebersman
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Vixie
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… John Levine
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Ebersman
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Vixie
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Ebersman
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… George Michaelson
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Terry Manderson
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… George Michaelson
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… 神明達哉
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Andrew Sullivan
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Mark Andrews
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Vixie
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Andrew Sullivan
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Ted Lemon
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… John Levine
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Ebersman
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… John Levine
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Ebersman
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Andrew Sullivan
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Mark Andrews
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Mark Andrews
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Mark Andrews
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… sthaug
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Masataka Ohta
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Masataka Ohta
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… sthaug
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Masataka Ohta
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Ebersman
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Evan Hunt
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… joel jaeggli
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Hoffman
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Evan Hunt
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… John Levine
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Vixie
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Evan Hunt
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… John Levine
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Vixie
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Andrew Sullivan
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Ebersman
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Mark Andrews
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Tony Finch
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Suzanne Woolf
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Stephane Bortzmeyer
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… sthaug
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Ted Lemon
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Ebersman
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Ralf Weber
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… P Vixie
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Ebersman
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Mark Andrews
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Ted Lemon
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… John Levine
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… sthaug
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Ebersman
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Ebersman
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Ted Lemon
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Ted Lemon
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Ebersman
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… sthaug
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Ebersman
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Ted Lemon
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Ebersman
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Ted Lemon
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… George Michaelson
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Ted Lemon
Re: [DNSOP] Draft Reverse DNS in IPv6 for Interne… Paul Vixie