Re: [DNSOP] Glue is not optional, but sometimes it *is* sufficient...
Warren Kumari <warren@kumari.net> Thu, 21 May 2020 21:52 UTC
Return-Path: <warren@kumari.net>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 932223A0C06 for <dnsop@ietfa.amsl.com>; Thu, 21 May 2020 14:52:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=kumari-net.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QqS-yjME3u0U for <dnsop@ietfa.amsl.com>; Thu, 21 May 2020 14:52:17 -0700 (PDT)
Received: from mail-lj1-x229.google.com (mail-lj1-x229.google.com [IPv6:2a00:1450:4864:20::229]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7F62F3A0C00 for <dnsop@ietf.org>; Thu, 21 May 2020 14:52:16 -0700 (PDT)
Received: by mail-lj1-x229.google.com with SMTP id q2so10139969ljm.10 for <dnsop@ietf.org>; Thu, 21 May 2020 14:52:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kumari-net.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=3lqHYnI5umoSyvvgWA+93sq72xRrMvWRJHRN0AQ+RnY=; b=Bmj2a7kErChy+2HKvKrM+Li/yMvGIi9cvcpNOa1Cg+sStR7sO5v0RvwZA40tS3zvUt dzX3lHc3Xl4d+/2fWy7t2kUEmQFus6+iV8eGRQBBN4g8fOEYWq3aIw7+EXAFcOK5215W axsTe+45w8LnMEcU5MHj7MZMwC+w72Z72UPSONUXWQMHs63b7tg0Xm5r/LWNsfooHw+U JyK8nZy8GVqhiYuA5wdmiwWDy8FR8iXJBhpRrKOkm8YSP8JRj8d07BYarECC3BG0gngk Plp+y0oDKHFiOE5joQif2k9KQ6lsIeB8umPc4jxb8q2IOzdl4FNx8YxT/k9JGHALZG5J n3zg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=3lqHYnI5umoSyvvgWA+93sq72xRrMvWRJHRN0AQ+RnY=; b=jdgL2JElBByzUcykiRGFyfSUAfYubCvhBwaFuXxO9lDXQkwhapwDxlql1Ue6NwhoZg RGN+TcnRiniKEdPynyhrXrO+YpAVS96jHGe04nux3nyAjEKc86I2rR6B4GuJvyZnXfCz kUS/ltohXOYpuCLvz8qmRUztMMxKsOE4DtMpwSOtnpvFDDS965Tlw7zsgW2PPHdV05sA Ps+nDwqwP5zOzlbUqfs58cCueGXVqMtpv/Rwnj98Ntn43RpnyPpDw4KP81NScEM4LVc3 9ouUjPF0azyIdYZVWiyC6gitqaCopWnuauJcJCJOzTsBpBNXXxCyTWECUnMOz3+66j/Z msDQ==
X-Gm-Message-State: AOAM530+nKDuCEkIy5kZesSHJFZWNUWK+KyD5KWudQ9c2PBZ5FcwPkmG 44lK+56yUbFK8+tQcKVuB+MnXZs10SuzJjye91Rs19xe
X-Google-Smtp-Source: ABdhPJxwt2CHq8Kk6oiCQ5lbdES6hH0UyiRKYM2eAJCMTmgI7wUPYHSZOmSka8smPdr9hwW49NO13LCqiCYgnK+Z/8g=
X-Received: by 2002:a2e:8654:: with SMTP id i20mr4574134ljj.79.1590097934146; Thu, 21 May 2020 14:52:14 -0700 (PDT)
MIME-Version: 1.0
References: <CAHw9_i+UsV9NkuPM4KYBZhO7_J78MkUEyVR3fr=vOX-vsjJeUA@mail.gmail.com> <20200521214124.271EC197E0DF@ary.qy>
In-Reply-To: <20200521214124.271EC197E0DF@ary.qy>
From: Warren Kumari <warren@kumari.net>
Date: Thu, 21 May 2020 17:51:37 -0400
Message-ID: <CAHw9_iKVkD4ORCc_DWSPXww6R43oL_N8TE3F6R-9YQuw1SAfjQ@mail.gmail.com>
To: John Levine <johnl@taugh.com>
Cc: dnsop <dnsop@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/ylRFS0Wy3gIDhsIuHsD29YxWQLM>
Subject: Re: [DNSOP] Glue is not optional, but sometimes it *is* sufficient...
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 May 2020 21:52:21 -0000
On Thu, May 21, 2020 at 5:41 PM John Levine <johnl@taugh.com> wrote: > > In article <CAHw9_i+UsV9NkuPM4KYBZhO7_J78MkUEyVR3fr=vOX-vsjJeUA@mail.gmail.com> you write: > >What if you *only* have glue, and no authoritative answer / server? > >Can I register example.com, put in www.example.com A 192.0.2.1 as > >glue, and not bother with this whole annoying authoritative server > >thing? > > Based on my recent analysis of TLD zones, yes if the zone is managed by > Afilias, or if you have friends at Nominet. Otherwise not so much. > > For wow4dns.com it looks pretty normal other than that your NS is lame. > > Here's what's in this morning's .COM zone file, but I assume you've updated the NS since then: > > WOW4DNS NS NS1.AUTH-SERVERS.NET. > WOW4DNS NS NS2.AUTH-SERVERS.NET. > Yeah, that was earlier in the day (before the testing, etc). > Your registrar record and the live .COM NS say: > > $ dig @g.gtld-servers.net. wow4dns.com a > ; (2 servers found) > ;; global options: +cmd > ;; Got answer: > ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 45456 > ;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 2, ADDITIONAL: 3 > ;; WARNING: recursion requested but not available > > ;; OPT PSEUDOSECTION: > ; EDNS: version: 0, flags:; udp: 4096 > ;; QUESTION SECTION: > ;wow4dns.com. IN A > > ;; AUTHORITY SECTION: > wow4dns.com. 172800 IN NS www.wow4dns.com. > wow4dns.com. 172800 IN NS www1.wow4dns.com. > > ;; ADDITIONAL SECTION: > www.wow4dns.com. 172800 IN A 193.151.173.35 > www1.wow4dns.com. 172800 IN A 193.151.173.35 Yes -- but information in the additional section should not be promoted to an answer. These IPs are only in the ADDITIONAL section - they should not be used as answers. W > > R's, > John -- I don't think the execution is relevant when it was obviously a bad idea in the first place. This is like putting rabid weasels in your pants, and later expressing regret at having chosen those particular rabid weasels and that pair of pants. ---maf
- Re: [DNSOP] Glue is not optional, but sometimes i… John Levine
- [DNSOP] Glue is not optional, but sometimes it *i… Warren Kumari
- Re: [DNSOP] Glue is not optional, but sometimes i… Warren Kumari
- Re: [DNSOP] Glue is not optional, but sometimes i… Töma Gavrichenkov
- Re: [DNSOP] Glue is not optional, but sometimes i… Warren Kumari
- Re: [DNSOP] Glue is not optional, but sometimes i… John R Levine
- Re: [DNSOP] Glue is not optional, but sometimes i… Andrew Sullivan
- Re: [DNSOP] Glue is not optional, but sometimes i… Tony Finch
- Re: [DNSOP] Glue is not optional, but sometimes i… John R Levine
- Re: [DNSOP] Glue is not optional, but sometimes i… Andrew Sullivan
- Re: [DNSOP] Glue is not optional, but sometimes i… Joe Abley
- Re: [DNSOP] Glue is not optional, but sometimes i… Joe Abley
- Re: [DNSOP] Glue is not optional, but sometimes i… Shumon Huque
- Re: [DNSOP] Glue is not optional, but sometimes i… Joe Abley
- Re: [DNSOP] Glue is not optional, but sometimes i… John R Levine
- Re: [DNSOP] Glue is not optional, but sometimes i… Shumon Huque
- Re: [DNSOP] Glue is not optional, but sometimes i… Paul Wouters
- Re: [DNSOP] Glue is not optional, but sometimes i… Tony Finch
- Re: [DNSOP] Glue is not optional, but sometimes i… John Levine
- Re: [DNSOP] Glue is not optional, but sometimes i… Lanlan Pan
- Re: [DNSOP] Glue is not optional, but sometimes i… Tim Wicinski