IETF Logo Mail Archive

Re: [dnssd] I-D Action: draft-ietf-dnssd-mdns-dns-interop-01.txt

Douglas Otis <doug.mtview@gmail.com> Tue, 07 July 2015 01:25 UTC

Return-Path: <doug.mtview@gmail.com>
X-Original-To: dnssd@ietfa.amsl.com
Delivered-To: dnssd@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 800ED1A887A for <dnssd@ietfa.amsl.com>; Mon, 6 Jul 2015 18:25:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ReEgFOuz4Q0q for <dnssd@ietfa.amsl.com>; Mon, 6 Jul 2015 18:25:15 -0700 (PDT)
Received: from mail-oi0-x235.google.com (mail-oi0-x235.google.com [IPv6:2607:f8b0:4003:c06::235]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6FC581A8851 for <dnssd@ietf.org>; Mon, 6 Jul 2015 18:25:15 -0700 (PDT)
Received: by oiaf66 with SMTP id f66so99227595oia.3 for <dnssd@ietf.org>; Mon, 06 Jul 2015 18:25:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to:content-type:content-transfer-encoding; bh=rPfrlPJqhjib/Ssam2ZLNe6ubSyRLymtCXpO8lSMNc0=; b=lBPcvCu4SyYerK75cnvKjp62DnFEMVAo2YDV7dYw9E50odJiu2UkdEVUj0wk63+WFt HnvP5PlLozSl8CJ/J/ACyTTlcyzZKHQwgVSzHGDqCtPwtmWw8Y4pbGEzDXBZ5hw8PBXk oggCJyvFQRKPN0OIsyPhUtcwmifFv3s5STShiAwrPsvE9jmGYv8KEAFO1UsgIuMS8uc2 NaGldkfbaM9+a5c+qkCCHY4avWBCBP4BIvHPEvs8FB9B3UGr3gFS1bJRnXTwhLoAb85l Tbqasr7QPblIDs8ZfjevIxc2v4n8U/G70Kxp4EVfCzrqc9xXLXojxHfdQDMVUDr0MReu y2dw==
X-Received: by 10.202.215.5 with SMTP id o5mr1365496oig.4.1436232314847; Mon, 06 Jul 2015 18:25:14 -0700 (PDT)
Received: from US-DOUGO-MAC.local (107-0-5-6-ip-static.hfc.comcastbusiness.net. [107.0.5.6]) by mx.google.com with ESMTPSA id c203sm5280658oig.12.2015.07.06.18.25.13 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 06 Jul 2015 18:25:13 -0700 (PDT)
To: dnssd@ietf.org
References: <20150704212511.22803.60661.idtracker@ietfa.amsl.com> <20150705002321.GB48722@mx2.yitter.info>
From: Douglas Otis <doug.mtview@gmail.com>
X-Enigmail-Draft-Status: N1110
Message-ID: <559B2A77.9030606@gmail.com>
Date: Mon, 06 Jul 2015 18:25:11 -0700
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:38.0) Gecko/20100101 Thunderbird/38.0.1
MIME-Version: 1.0
In-Reply-To: <20150705002321.GB48722@mx2.yitter.info>
Content-Type: text/plain; charset="windows-1252"
Content-Transfer-Encoding: 7bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/dnssd/sqCK2xeR3h80f0xsX_C1yrinaH8>
Subject: Re: [dnssd] I-D Action: draft-ietf-dnssd-mdns-dns-interop-01.txt
X-BeenThere: dnssd@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Discussion of extensions to Bonjour \(mDNS and DNS-SD\) for routed networks." <dnssd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnssd>, <mailto:dnssd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnssd/>
List-Post: <mailto:dnssd@ietf.org>
List-Help: <mailto:dnssd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnssd>, <mailto:dnssd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 07 Jul 2015 01:25:17 -0000


On 7/4/15 5:23 PM, Andrew Sullivan wrote:
> Hi,
>
> On Sat, Jul 04, 2015 at 02:25:11PM -0700, internet-drafts@ietf.org wrote:
>> A New Internet-Draft is available from the on-line Internet-Drafts directories.
>>  This draft is a work item of the Extensions for Scalable DNS Service Discovery  Working Group of the IETF.
>>
>>         Title           : On Interoperation of Labels Between mDNS and DNS
>>         Author          : Andrew Sullivan
>> 	Filename        : draft-ietf-dnssd-mdns-dns-interop-01.txt
>> 	Pages           : 10
>> 	Date            : 2015-07-04
> This draft attempts to deal with the issues that were raised to me
> about the previous versions.  In particular, it tries to de-emphasise
> the worry about system-wide resolvers (without dismissing it
> completely) and to emphasise the issue of actual administration
> policies in the public DNS.
Dear Andrew,

Why assume top level domains are always A-Labels?  A scheme
that visually conveys available services in list form for
user selection is not well served with A-labels.

Why not emphasize use of UTF-8 where possible to avoid
rather messy conversion issues and resulting visual
confusion.  

Your approach ignores two issues:

1) Dealing with look-alike spoofing can not depend upon
registrar regulation or conversion rules.

2) The size of a response accessed with a DNS wildcard may
lead to DDoS issues.

Publishing prophylactic wildcards destroys the utility of
the DNS-SD approach.  An incongruity of mixing A-Labels with
U-labels creates an unfriendly display of identifiers which
does not help limit the size of the list response.  The
listing approach can be made safe with use of HTTP rather
than DNS, or at the least DNS over QUIC.  Until an inter-op
document is more comprehensive, it is hard to see how this
improves upon the current situation.

DDoS and inadvertent disclosure issues are explained in:
https://tools.ietf.org/html/draft-otis-dnssd-mdns-xlink-06

Regards,
Douglas Otis

v2.23.0 | Report a Bug | By Email