Re: [DNSOP] draft-ietf-dnsop-delegation-only is still not useful
John Levine <johnl@taugh.com> Tue, 03 November 2020 22:19 UTC
Return-Path: <johnl@iecc.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 792293A125C for <dnsop@ietfa.amsl.com>; Tue, 3 Nov 2020 14:19:36 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.85
X-Spam-Level:
X-Spam-Status: No, score=-1.85 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.25, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=iecc.com header.b=fxA+9HIU; dkim=pass (2048-bit key) header.d=taugh.com header.b=D1nlc0Fy
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Uf4QxBzbxoBg for <dnsop@ietfa.amsl.com>; Tue, 3 Nov 2020 14:19:34 -0800 (PST)
Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 638F83A125D for <dnsop@ietf.org>; Tue, 3 Nov 2020 14:19:33 -0800 (PST)
Received: (qmail 40718 invoked from network); 3 Nov 2020 22:19:32 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=iecc.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:cleverness; s=9f08.5fa1d774.k2011; bh=LOXlphR5IM8HX0F4lU/DAzK2yCcBsN6LDgNCi/hrIIw=; b=fxA+9HIUuGdYz9AOaQ4WTaou77SkuErxeVJr2FeSZm+dNZZBwYfXT2Pa1BD8mSNE7sulb/F8KVVP2yHQQ8WwCNCzB8JaLtX5/hd/dQoVnyLSbZ60LABGQOVFnttfVh1jXpguPg9NGKAOHjiQsWo0qJ1reLZtfaA4y4mpurGx1gW6ju1a1XPzJnr/GKCeiI2fHsaOZmQ+1pZi7fLWYkY1pQBYmwjidcLBFCqmw8kkQsiA+QzUK4hcBd69NlF/7t9ZkljVGcySC2RlzKqMxFnd7wAkgMWcjTj+uYgmIrYuLP5jYobIKDQIpECJRL0MvRi32fFq047f44o9WNM4NGDyzw==
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=taugh.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:cleverness; s=9f08.5fa1d774.k2011; bh=LOXlphR5IM8HX0F4lU/DAzK2yCcBsN6LDgNCi/hrIIw=; b=D1nlc0FyW2dl0Mzoktx37cUPhlSiCTl3ynzANZwF6QbDoBDmI0MAWDkRPGXvaic1PkqKMO0YCzXGT7EvOqMoniIvSruGXThXb6cQN2lBvwXPrL+VXyLSZEymP5j2tOf9hekf14hcZDDMF9zZzkzVE3eGqbqegvhIGC6L1SaVtiiyMVHSVirMPEaeol6PSbKnTxjabITE3pmujxUxGkJehpNK7cxrvGEeogsjDMOpLjvFYMyqhyBjG3eBxvleAsquBNOVSN9LcVNPFfz2UNdxh4OzpOVY4jwilw31jz5GlOAXoGHwM5rrhJhLgwHnLqoq8MLWOc/RYQvq3K7w2WeMKQ==
Received: from ary.qy ([IPv6:2001:470:1f07:1126::78:696d:6170]) by imap.iecc.com ([IPv6:2001:470:1f07:1126::78:696d:6170]) with ESMTPS (TLS1.2 ECDHE-RSA AES-256-GCM AEAD) via TCP6; 03 Nov 2020 22:19:32 -0000
Received: by ary.qy (Postfix, from userid 501) id C535A2556CB7; Tue, 3 Nov 2020 17:19:31 -0500 (EST)
Date: Tue, 03 Nov 2020 17:19:31 -0500
Message-Id: <20201103221931.C535A2556CB7@ary.qy>
From: John Levine <johnl@taugh.com>
To: dnsop@ietf.org
Cc: jabley@hopcount.ca
In-Reply-To: <1A141A5B-FD68-4991-BD90-DFE7EFAED49D@hopcount.ca>
Organization: Taughannock Networks
X-Headerized: yes
Cleverness: minimal
Mime-Version: 1.0
Content-type: text/plain; charset="utf-8"
Content-transfer-encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/vu-syY7GqZRHRsAlwXGW4ytZRE4>
Subject: Re: [DNSOP] draft-ietf-dnsop-delegation-only is still not useful
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 03 Nov 2020 22:19:36 -0000
In article <1A141A5B-FD68-4991-BD90-DFE7EFAED49D@hopcount.ca> you write: >I am familiar with the contents of that blog post and the circumstances surrounding it. My position on the usefulness of >this draft has not changed. See below for more detail. Hi. I'm not Joe but I have a CZDS account. As I said back in August, while there are lots of zones that are delegation-mostly, that is not the same as being delegation-only. It is simply true that most TLDs are delegation-only, and this hack is not useful. I grepped through the downloaded contracted zone files for signed A and AAAA records and found over 32,000 of them in over 200 TLDs. The list of TLDs and counts are below, or you can find the whole set at https://www.iecc.com/signedglue.txt There are also _nicname._tcp SRV records in TLDs including .am .at. ax. be. bg. biz. ch. cl. co. de. dk. fo. fr. gg. hu. ie. is. and at least a dozen others. Beyond that, there are 17,000 signed MX records in the .name zone and probably other oddities if I looked further. R's, John 1 abogado.txt 1 aeg.txt 1 afamilycompany.txt 1 amazon.txt 1 aol.txt 2 arab.txt 182 asia.txt 1 audible.txt 1 author.txt 1 aws.txt 1 barefoot.txt 1 bayern.txt 1 bbc.txt 5 bbt.txt 1 beer.txt 1 bentley.txt 4 bet.txt 2 biz.txt 6 black.txt 60 blue.txt 1 bms.txt 1 book.txt 1 boston.txt 1 bot.txt 1 bradesco.txt 1 broadway.txt 8 broker.txt 2 brussels.txt 1 budapest.txt 1 buy.txt 1 call.txt 8 career.txt 1 casa.txt 17 cat.txt 8 chanel.txt 1 circle.txt 8 clubmed.txt 1 comcast.txt 1 cooking.txt 8 cookingchannel.txt 2 cpa.txt 8 crown.txt 8 crs.txt 8 csc.txt 1 cymru.txt 1 dds.txt 1 deal.txt 8 diy.txt 8 duck.txt 4 eco.txt 8 ericsson.txt 1 fashion.txt 1 fast.txt 8 fidelity.txt 1 fire.txt 1 fishing.txt 1 fit.txt 8 food.txt 8 foodnetwork.txt 8 forex.txt 1 free.txt 8 frontdoor.txt 8 fujixerox.txt 8 gallo.txt 1 garden.txt 8 genting.txt 8 glade.txt 28 global.txt 1 gop.txt 1 got.txt 2 green.txt 8 guardian.txt 8 hgtv.txt 1 horse.txt 1 hot.txt 8 hotmail.txt 8 ice.txt 1 imdb.txt 20338 info.txt 2 ist.txt 8 istanbul.txt 8 jaguar.txt 8 java.txt 1 jot.txt 1 joy.txt 8 juniper.txt 8 kerryhotels.txt 8 kerrylogistics.txt 8 kerryproperties.txt 33 kim.txt 1 kindle.txt 8 kuokgroup.txt 8 landrover.txt 1 law.txt 8 lefrak.txt 8 lego.txt 1 like.txt 8 linde.txt 6 link.txt 8 lipsy.txt 7 llc.txt 2 llp.txt 1 locus.txt 1 london.txt 8 lundbeck.txt 8 lupin.txt 1 luxe.txt 8 maif.txt 8 markets.txt 8 med.txt 1 miami.txt 8 microsoft.txt 303 mobi.txt 1 moi.txt 2 moscow.txt 8 nab.txt 8 nationwide.txt 8 next.txt 8 nextdirect.txt 8 nikon.txt 8 nissay.txt 8 norton.txt 1 now.txt 8 obi.txt 8 off.txt 8 omega.txt 3 onl.txt 8 onyourside.txt 8 oracle.txt 8 orange.txt 8171 org.txt 1 organic.txt 2 paris.txt 1 pay.txt 2 pet.txt 8 pictet.txt 1 pin.txt 14 pink.txt 4 poker.txt 4 politie.txt 1 prime.txt 1246 pro.txt 4 promo.txt 8 raid.txt 1 read.txt 8 realestate.txt 8 realtor.txt 38 red.txt 8 rexroth.txt 1 rodeo.txt 1 room.txt 8 rwe.txt 1 safe.txt 8 sanofi.txt 1 save.txt 8 sbs.txt 8 sca.txt 3 scb.txt 8 scjohnson.txt 1 secure.txt 8 sener.txt 8 ses.txt 8 shangrila.txt 8 shell.txt 1 shiksha.txt 1 silk.txt 8 sky.txt 1 smile.txt 1 spot.txt 4 srl.txt 1 surf.txt 8 swatch.txt 1 talk.txt 8 tatamotors.txt 141 tel.txt 8 tiaa.txt 8 tiffany.txt 783 top.txt 8 trading.txt 12 travel.txt 8 travelchannel.txt 1 tunes.txt 1 tushu.txt 8 ubank.txt 8 ubs.txt 8 vanguard.txt 1 vip.txt 1 virgin.txt 8 visa.txt 2 vlaanderen.txt 1 vodka.txt 8 volvo.txt 12 vote.txt 1 wales.txt 1 wanggou.txt 8 weber.txt 1 wedding.txt 8 weir.txt 8 windows.txt 1 work.txt 1 wow.txt 8 xbox.txt 8 xerox.txt 1 xfinity.txt 18 xin.txt 2 xn--30rr7y.txt 8 xn--5su34j936bgsg.txt 1 xn--6frz82g.txt 8 xn--9dbq2a.txt 3 xn--9et52u.txt 1 xn--c1avg.txt 1 xn--cckwcxetd.txt 2 xn--efvy88h.txt 1 xn--i1b6b1a6a2e.txt 1 xn--jlq480n2rg.txt 60 xn--kput3i.txt 8 xn--mk1bu44c.txt 2 xn--mxtq1m.txt 2 xn--ngbrx.txt 1 xn--nqv7f.txt 8 xn--t60b56a.txt 8 xn--tckwe.txt 8 xn--w4r85el8fhu5dnra.txt 8 xn--w4rs40l.txt 1 yamaxun.txt 1 yoga.txt 1 you.txt 1 zappos.txt
- [DNSOP] Questions on draft-ietf-dnsop-delegation-… Ben Schwartz
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Petr Špaček
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Paul Wouters
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Joe Abley
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Ben Schwartz
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Paul Wouters
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… John Levine
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Joe Abley
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Paul Wouters
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Joe Abley
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Paul Wouters
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Joe Abley
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Brian Dickson
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Joe Abley
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Paul Wouters
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Patrick Mevzek
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Patrick Mevzek
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Joe Abley
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Ben Schwartz
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Tony Finch
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… John R Levine
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Brian Dickson
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… John Levine
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Hugo Salgado
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Patrick Mevzek
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Paul Wouters
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… John Levine
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Paul Wouters
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Joe Abley
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Joe Abley
- Re: [DNSOP] draft-ietf-dnsop-delegation-only is s… John Levine
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Paul Wouters
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Paul Wouters
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Paul Wouters
- Re: [DNSOP] Questions on draft-ietf-dnsop-delegat… Ben Schwartz
- Re: [DNSOP] draft-ietf-dnsop-delegation-only is s… Viktor Dukhovni
- Re: [DNSOP] draft-ietf-dnsop-delegation-only is s… Paul Wouters
- Re: [DNSOP] draft-ietf-dnsop-delegation-only is s… Joe Abley
- Re: [DNSOP] draft-ietf-dnsop-delegation-only is s… John Levine
- Re: [DNSOP] draft-ietf-dnsop-delegation-only is s… Paul Wouters
- Re: [DNSOP] draft-ietf-dnsop-delegation-only is s… John R Levine