IETF Logo Mail Archive

Re: [Doh] [Ext] Reviewing Resolver-Associated DOH

Mark Nottingham <mnot@mnot.net> Mon, 18 March 2019 21:59 UTC

Return-Path: <mnot@mnot.net>
X-Original-To: doh@ietfa.amsl.com
Delivered-To: doh@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 98CED1311A3 for <doh@ietfa.amsl.com>; Mon, 18 Mar 2019 14:59:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.701
X-Spam-Level:
X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mnot.net header.b=lGEa98zP; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=8InUdm5K
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UJxOuTofwKJT for <doh@ietfa.amsl.com>; Mon, 18 Mar 2019 14:59:54 -0700 (PDT)
Received: from wout1-smtp.messagingengine.com (wout1-smtp.messagingengine.com [64.147.123.24]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7DF8F1311C1 for <doh@ietf.org>; Mon, 18 Mar 2019 14:59:53 -0700 (PDT)
Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by mailout.west.internal (Postfix) with ESMTP id ACCDB3E1A; Mon, 18 Mar 2019 17:59:52 -0400 (EDT)
Received: from mailfrontend1 ([10.202.2.162]) by compute3.internal (MEProxy); Mon, 18 Mar 2019 17:59:53 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mnot.net; h= content-type:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; s=fm2; bh=s pb6uYwFfoxW9QZB0RVui3avZ37YbwQykHCg5tdCigE=; b=lGEa98zP2a/BhUHED onCu3JPXMjD9raKWDjT1SAKLuorBb8Uexm2kI+x01XBg+eTz0PVS1Li/PEejewSv CnYdPJ7ddt+P3hjjmRrNhcrmE7bYbwUmu0VRmBTK4mbq+BVawaPY99wSKLiumczE 7Hv60kvQ+haLxKY15urJd2MGfUSl/gbGImGePFaPiINxbkpYr48FfAmEirdLdoZu gsbITo8B0kDkLhCa3FzYyOmqrll3AYQKuwpK/BWo+ase6Y013Pu1/JQqNyVuyHBz iQwo+QkpPU/cCYB+JQ4ZpP/yKmlegjEJ3lvR/P2HhKEc9QZR0Fbe529c8tLSGeVc uQiZA==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm2; bh=spb6uYwFfoxW9QZB0RVui3avZ37YbwQykHCg5tdCi gE=; b=8InUdm5KyNFX0+a/IY6LScIBv004JpRglrhSMvE4/kv57hXWdfElwf0g4 MIxN3f1XJwO15u6RuuRX7sc2N1MHCD5SxX0EWLVpUTPKO3cxDo4FKQeYqXS7csu5 cb2P+UGCG70t0IHuwPEAxufcYKUZmvrFTITMWwaobf2coRSDvPbIWz6za+ym2+Wd eDxAvDd8Rv30HXK/dcwauARnqp1el5zgkx3A1nodUZJKxu8UFwglpFEuNtMKdtjY 7ohIaselUgBpcgBtKVyGPnalotAyuQnLdbOpd8bltBfjHJJwGDOnKlL9H+ZvVJN8 ki+0YdgMUAbsYAhLy60mkTgDaTWwA==
X-ME-Sender: <xms:1hSQXByZkIE75KM_ucOtdh0QpYYscV4sx340_G86EsQG3Qhg8QFOxQ>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedutddriedugdduheejucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne cujfgurheptggguffhjgffgffkfhfvofesthhqmhdthhdtjeenucfhrhhomhepofgrrhhk ucfpohhtthhinhhghhgrmhcuoehmnhhothesmhhnohhtrdhnvghtqeenucffohhmrghinh epmhhnohhtrdhnvghtnecukfhppedugeegrddufeeirddujeehrddvkeenucfrrghrrghm pehmrghilhhfrhhomhepmhhnohhtsehmnhhothdrnhgvthenucevlhhushhtvghrufhiii gvpedt
X-ME-Proxy: <xmx:1hSQXPrzCNnnDQhMGsUyi0fcXmU7iCAZqWVy4KZlgG-SGwlmT8sucA> <xmx:1hSQXDaJin0VgiO9sefS7vwRnfCu63lbL9595F1RZgvY5Jfwbkn-eg> <xmx:1hSQXItw7DQvbocG2GkUqE9TQMWJVbtVlDwTlx-HGyqUQTpoU6PKDg> <xmx:2BSQXDpzxOwLhImIni8E3tuZE8-LSF53BpyGWgSK2vs2I7gnCJ_cxw>
Received: from attitudadjuster.mnot.net (unknown [144.136.175.28]) by mail.messagingengine.com (Postfix) with ESMTPA id 8EC82E4684; Mon, 18 Mar 2019 17:59:49 -0400 (EDT)
Content-Type: text/plain; charset=utf-8
Mime-Version: 1.0 (Mac OS X Mail 12.2 \(3445.102.3\))
From: Mark Nottingham <mnot@mnot.net>
In-Reply-To: <75491a04058f42ef923a01ccc748fad9@ustx2ex-dag1mb3.msg.corp.akamai.com>
Date: Tue, 19 Mar 2019 08:59:44 +1100
Cc: nusenu <nusenu-lists@riseup.net>, "doh@ietf.org" <doh@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <7EAD04F0-5FEB-42DE-92FE-C0B1889B79A2@mnot.net>
References: <CAHbrMsCNyeabhk0sVexOHVedVkgG2dvV9T8wWL++om5juAUvEw@mail.gmail.com> <5690c5b2-65ab-55d4-b3ec-d06d82ebbb26@riseup.net> <7F06A457-58C6-47A0-BDCA-D25FF0C6C062@icann.org> <b5c7f08d-debc-b426-f72d-b5100c476b4f@it.aoyama.ac.jp> <392246eb108b4421b63f0813f71d3b75@ustx2ex-dag1mb3.msg.corp.akamai.com> <8d56232b-8933-bf8a-186b-e44597364e14@riseup.net> <75491a04058f42ef923a01ccc748fad9@ustx2ex-dag1mb3.msg.corp.akamai.com>
To: "Hewitt, Rory" <rhewitt@akamai.com>
X-Mailer: Apple Mail (2.3445.102.3)
Archived-At: <https://mailarchive.ietf.org/arch/msg/doh/4CiKY4M8dmwkLg_MUkd6vpWNov8>
Subject: Re: [Doh] [Ext] Reviewing Resolver-Associated DOH
X-BeenThere: doh@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: DNS Over HTTPS <doh.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/doh>, <mailto:doh-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/doh/>
List-Post: <mailto:doh@ietf.org>
List-Help: <mailto:doh-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/doh>, <mailto:doh-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 18 Mar 2019 21:59:57 -0000

*well-known URI expert hat on*

Without speaking to the technical merit of the proposals being discussed, I'd like to discourage folks from thinking that they can reserve prefixes within the first well-known URI path segment; it is a managed space, but if we start this practice, we're going to have a nightmare managing the competing requirements.

If you want to reserve a prefix, reserve something like /.well-known/dns-servers/ and put the specific flavour after that (or in the retrieved file, or...).

All that said, bike shedding the name at this point probably isn't a terribly productive use of time.

Thanks,


> On 19 Mar 2019, at 8:56 am, Hewitt, Rory <rhewitt@akamai.com> wrote:
> 
> I'm firmly in favor of having a naming 'convention' of:
> 
> 	/.well-known/dns-doh-servers
> 
> I think it's critical to have "dns-" as the name prefix, to clearly indicate that this is a DNS-related file. Then "doh-" to indicate that this is a DoH-specific file and so on... Using this convention means that the DoT folks can create their own files as
> 
> 	/.well-known/dns-dot-servers
> 
> While your idea of "/.well-known/dns-over-https-servers" fulfills the first "dns-" part of my convention (and it's also very clear what it is šŸ˜Š), I guess I'm always going to be antsy that there's going to be a new DNS-related 'technology' in the future called e.g. "Carrier-Pigeon DNS" and that team is going to call their file "/.well-known/carrier-pigeon-dns". So it's better (IMHO) to explicitly indicate that it's a series of Three-Letter-Acronyms...
> 
> Of course, a naming convention only works if everyone both knows about it and follows it. Even if we decide to use a 'strict' naming convention, unless it's both 'publicized' and 'enforced', it's kinda useless.

--
Mark Nottingham   https://www.mnot.net/

v2.8.7 | Report a Bug | By Email