IETF Logo Mail Archive

Re: [Doh] Draft -09 and WGLC #2

Patrick McManus <pmcmanus@mozilla.com> Tue, 29 May 2018 01:40 UTC

Return-Path: <pmcmanus@mozilla.com>
X-Original-To: doh@ietfa.amsl.com
Delivered-To: doh@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DC4FE12D9FF for <doh@ietfa.amsl.com>; Mon, 28 May 2018 18:40:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.234
X-Spam-Level:
X-Spam-Status: No, score=-1.234 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, SPF_SOFTFAIL=0.665] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9qtxEsl-F_lf for <doh@ietfa.amsl.com>; Mon, 28 May 2018 18:40:03 -0700 (PDT)
Received: from linode64.ducksong.com (www.ducksong.com [192.155.95.102]) by ietfa.amsl.com (Postfix) with ESMTP id 7882212DA2B for <doh@ietf.org>; Mon, 28 May 2018 18:40:03 -0700 (PDT)
Received: from mail-oi0-f50.google.com (mail-oi0-f50.google.com [209.85.218.50]) by linode64.ducksong.com (Postfix) with ESMTPSA id 05C133A01E for <doh@ietf.org>; Mon, 28 May 2018 21:40:03 -0400 (EDT)
Received: by mail-oi0-f50.google.com with SMTP id t22-v6so8249299oih.6 for <doh@ietf.org>; Mon, 28 May 2018 18:40:03 -0700 (PDT)
X-Gm-Message-State: ALKqPwfbn7sS8a4AO0QfgH40imygQ+Xo9DoBWDHEKd5klqi7gOntHvIe YYn0LX/HDenocLhhP40w1UJF13M4MyJAw4kVwN4=
X-Google-Smtp-Source: ADUXVKIdn9gCU2iMSlZ/tsTt3J28waaxFPHeg6/x6EHLQNoFbp1Hg7p/Nit6iG1GSfVypHg/lZ2jsh4p4J4ivdGCEzc=
X-Received: by 2002:aca:bec6:: with SMTP id o189-v6mr7842958oif.337.1527558002707; Mon, 28 May 2018 18:40:02 -0700 (PDT)
MIME-Version: 1.0
Received: by 2002:a4a:8a24:0:0:0:0:0 with HTTP; Mon, 28 May 2018 18:40:02 -0700 (PDT)
In-Reply-To: <20180528161043.GB12038@mx4.yitter.info>
References: <CAHbrMsCxkogJ-fzubf7cPgvbeGAhWUFKV3crrmn4ee6=fDnqwQ@mail.gmail.com> <382ba525100a4561b086fe8b8b6527be@ustx2ex-dag1mb3.msg.corp.akamai.com> <603D7553-D1A9-4DCC-9E74-199059C56A9F@sinodun.com> <1daad94d-99c1-803a-f52c-1dd17adefb7a@o2.pl> <CAOdDvNrpLwF5jpn1YA4-HXsfGxVkdds+xHVd6Bxy0Ux+3nrcrA@mail.gmail.com> <CA9BEE64-9F16-4CCC-A1E0-4C7FD45C455C@icann.org> <20180528161043.GB12038@mx4.yitter.info>
From: Patrick McManus <pmcmanus@mozilla.com>
Date: Mon, 28 May 2018 21:40:02 -0400
X-Gmail-Original-Message-ID: <CAOdDvNoE_UT9Lb1sng3GkC3nKSqSqSvh0oOKxaMYv9DsNj=Ldg@mail.gmail.com>
Message-ID: <CAOdDvNoE_UT9Lb1sng3GkC3nKSqSqSvh0oOKxaMYv9DsNj=Ldg@mail.gmail.com>
To: Andrew Sullivan <ajs@anvilwalrusden.com>
Cc: DoH WG <doh@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000002014b7056d4e5064"
Archived-At: <https://mailarchive.ietf.org/arch/msg/doh/6etZykE7oL9DZXNXxFAxRescgBc>
Subject: Re: [Doh] Draft -09 and WGLC #2
X-BeenThere: doh@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: DNS Over HTTPS <doh.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/doh>, <mailto:doh-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/doh/>
List-Post: <mailto:doh@ietf.org>
List-Help: <mailto:doh-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/doh>, <mailto:doh-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 29 May 2018 01:40:06 -0000

,

>
>    DNS API clients MUST account for the Age response header's value
>    ([RFC7234]) when calculating the DNS TTL of a response.  For example,
>    if a RRset is received with a DNS TTL of 600, but the Age header
>    indicates that the response has been cached for 250 seconds, the
>    remaining lifetime of the RRset is 350 seconds.
>
>
> the TTL.  What this passage means is that the data that comes in to a
> DNS API client _is not_ suitable to hand straight to the local stub
> subsystem: instead, some additional processing MUST be performed in
> order to ensure that TTLs are not accidentally extended by accident.
>

That's not only what it means, it seems to me that's what it says :).. What
other words would help here? (Noting that this is not always a gateway.
Sometimes the HTTP client is the terminal client.)

v2.23.0 | Report a Bug | By Email