IETF Logo Mail Archive

Re: [DNSOP] [internet-drafts@ietf.org: I-D Action: draft-grothoff-iesg-special-use-p2p-names-00.txt]

David Conrad <drc@virtualized.org> Wed, 04 December 2013 16:37 UTC

Return-Path: <drc@virtualized.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9A0401AE2CF for <dnsop@ietfa.amsl.com>; Wed, 4 Dec 2013 08:37:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.303
X-Spam-Level:
X-Spam-Status: No, score=-1.303 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, J_CHICKENPOX_65=0.6, RP_MATCHES_RCVD=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SXiPiQBhQxVQ for <dnsop@ietfa.amsl.com>; Wed, 4 Dec 2013 08:37:39 -0800 (PST)
Received: from alpha.virtualized.org (alpha.virtualized.org [199.233.229.186]) by ietfa.amsl.com (Postfix) with ESMTP id 5A76F1AE2CC for <dnsop@ietf.org>; Wed, 4 Dec 2013 08:37:36 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by alpha.virtualized.org (Postfix) with ESMTP id 982FB846FD; Wed, 4 Dec 2013 11:37:32 -0500 (EST)
Received: from alpha.virtualized.org ([127.0.0.1]) by localhost (alpha.virtualized.org [127.0.0.1]) (maiad, port 10024) with ESMTP id 02969-05; Wed, 4 Dec 2013 11:37:32 -0500 (EST)
Received: from [10.0.1.6] (c-24-4-109-25.hsd1.ca.comcast.net [24.4.109.25]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: drc@virtualized.org) by alpha.virtualized.org (Postfix) with ESMTPSA id 89765845D5; Wed, 4 Dec 2013 11:37:31 -0500 (EST)
Content-Type: multipart/signed; boundary="Apple-Mail=_9013F5D6-258B-415D-B14E-E8FBAAFF96D4"; protocol="application/pgp-signature"; micalg="pgp-sha1"
Mime-Version: 1.0 (Mac OS X Mail 7.0 \(1822\))
From: David Conrad <drc@virtualized.org>
In-Reply-To: <alpine.LSU.2.00.1312041229560.8824@hermes-2.csi.cam.ac.uk>
Date: Wed, 04 Dec 2013 08:37:28 -0800
Message-Id: <6A3B7F5A-238C-45BC-AFF9-38F3213A7322@virtualized.org>
References: <20131201164841.GB12135@sources.org> <BF87877A-8989-4AA4-9ED1-52C82E1BC538@nominum.com> <alpine.LFD.2.10.1312011206480.12923@bofh.nohats.ca> <20131202151651.GD16808@mx1.yitter.info> <A12FD3E0-58F6-4490-877F-A9C59405F717@vpnc.org> <6DBBC8339C394DBDAE4FE1F764E02A8D@hopcount.ca> <20131203170825.GA17211@nic.fr> <21D03162-81D1-494A-89A9-41BE89D28A0E@nominum.com> <BB7627E9-8D50-48E5-B809-64AE4D574271@virtualized.org> <20131203221006.GB5689@sources.org> <D3E446D0-F9ED-4671-A1C2-29A15D3DE010@virtualized.org> <alpine.LSU.2.00.1312041229560.8824@hermes-2.csi.cam.ac.uk>
To: Tony Finch <dot@dotat.at>
X-Mailer: Apple Mail (2.1822)
Cc: dnsop WG <dnsop@ietf.org>
Subject: Re: [DNSOP] [internet-drafts@ietf.org: I-D Action: draft-grothoff-iesg-special-use-p2p-names-00.txt]
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Dec 2013 16:37:41 -0000

Tony,

On Dec 4, 2013, at 4:36 AM, Tony Finch <dot@dotat.at> wrote:
> David Conrad <drc@virtualized.org> wrote:
>> Haven't we been here before (e.g., .bitnet/.csnet/.uucp)?
> To me this sounds a lot like private namespaces in the DNS which
> correspond to private networks - the analogy being that these special
> non-DNS names often correspond to special overlay networks (as in Tor and
> GNUnet).

Yes, except they aren't really private -- they're public but only if you know/have installed the right magic bits.

> So you need to have the p2p software in order to use the overlay network
> and to resolve the names. If your system doesn't know about the
> specialness of the name then it won't resolve properly but you would not
> be able to use it if it did resolve properly.

Yes. And, of course, "won't resolve properly" most likely means sending a query to the root and getting back an NXDOMAIN. Last I checked, the "L" root server is getting about 2000 queries per second for ".local" (about 7 Mbps in DNSSEC signed outbound traffic if my math is right). To be honest, given the crap that hits the roots these days, I'm not sure this matters all that much but it probably should be a consideration.

> If an application needs the special connectivity, then it needs to require
> the special support software.

My concern is that given the names in question look like domain names, particularly now in the days of new gTLDs, even though they aren't _really_ domain names (in the sense that they can't be looked up in the domain name system), they'll be treated like domain names leading to confusion/interoperability problems. If I send my Pointed Haired Boss a note referencing pictures of him with farm animals on photos.onion, he may try to click/cut-paste that "domain name" in a browser. If he doesn't have the .onion overlay software installed and configured, he's likely to be disappointed/confused/angry (at least with .local if my PHB is an English speaker, he might have a hint). The DNS community spent a lot of time back in the days of alternate root proposals arguing this sort of confusion would be a bad thing. I figure it's still bad.

Regards,
-drc

v2.23.0 | Report a Bug | By Email