Re: [Doh] A question of trust (was Re: Draft -09 and WGLC #2)

Patrick McManus <pmcmanus@mozilla.com> Wed, 30 May 2018 02:14 UTC

Return-Path: <pmcmanus@mozilla.com>
X-Original-To: doh@ietfa.amsl.com
Delivered-To: doh@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AC94012EB98 for <doh@ietfa.amsl.com>; Tue, 29 May 2018 19:14:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.234
X-Spam-Level:
X-Spam-Status: No, score=-1.234 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, SPF_SOFTFAIL=0.665] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id I9OHYGS2Jvyf for <doh@ietfa.amsl.com>; Tue, 29 May 2018 19:14:18 -0700 (PDT)
Received: from linode64.ducksong.com (linode6only.ducksong.com [IPv6:2600:3c02::f03c:91ff:fe6e:e8da]) by ietfa.amsl.com (Postfix) with ESMTP id 6B69212EB62 for <doh@ietf.org>; Tue, 29 May 2018 19:14:18 -0700 (PDT)
Received: from mail-ot0-f173.google.com (mail-ot0-f173.google.com [74.125.82.173]) by linode64.ducksong.com (Postfix) with ESMTPSA id DC59A3A041 for <doh@ietf.org>; Tue, 29 May 2018 22:14:17 -0400 (EDT)
Received: by mail-ot0-f173.google.com with SMTP id q17-v6so8782049otg.2 for <doh@ietf.org>; Tue, 29 May 2018 19:14:17 -0700 (PDT)
X-Gm-Message-State: ALKqPwe3zEG3Gy+Nbg6j3uRk7f9qmtdLZ1ZAFI8mOup+S59H4d69lYnw btQOJZ9vsg5Si9pxYSXgMY2JIad0RU5C3bOQL2A=
X-Google-Smtp-Source: ADUXVKJnlONB0FIZdfPr0bCnMM+uoAS6FVqKnCK3zl8Zwi38tXTcQk4duHIT6JG1I6UCYj214EHyuaUVcFYHXg2+Lvs=
X-Received: by 2002:a9d:419c:: with SMTP id p28-v6mr592663ote.2.1527646457598; Tue, 29 May 2018 19:14:17 -0700 (PDT)
MIME-Version: 1.0
Received: by 2002:a4a:8a32:0:0:0:0:0 with HTTP; Tue, 29 May 2018 19:14:17 -0700 (PDT)
In-Reply-To: <CAOdDvNopKvs18jQizgyiAQq8UyB4GwdqyXfXPa+25pNrxWg8pA@mail.gmail.com>
References: <CAHbrMsCxkogJ-fzubf7cPgvbeGAhWUFKV3crrmn4ee6=fDnqwQ@mail.gmail.com> <382ba525100a4561b086fe8b8b6527be@ustx2ex-dag1mb3.msg.corp.akamai.com> <603D7553-D1A9-4DCC-9E74-199059C56A9F@sinodun.com> <1daad94d-99c1-803a-f52c-1dd17adefb7a@o2.pl> <CAOdDvNrpLwF5jpn1YA4-HXsfGxVkdds+xHVd6Bxy0Ux+3nrcrA@mail.gmail.com> <CA9BEE64-9F16-4CCC-A1E0-4C7FD45C455C@icann.org> <20180528161043.GB12038@mx4.yitter.info> <CABkgnnV3kKFCzKLfPf_0WZh95jr2vEt652Rb4EozfqROCVsJdA@mail.gmail.com> <CAOdDvNrPU9WM3WgcX1AVF39D3bGdxCKgPAF_afhfv2Qt0pZR5g@mail.gmail.com> <DB7D40D6-455A-48DD-AB98-DF2CF0866222@sinodun.com> <CAOdDvNopKvs18jQizgyiAQq8UyB4GwdqyXfXPa+25pNrxWg8pA@mail.gmail.com>
From: Patrick McManus <pmcmanus@mozilla.com>
Date: Tue, 29 May 2018 22:14:17 -0400
X-Gmail-Original-Message-ID: <CAOdDvNq9A2PsE9c4oW9XEPq8adVSDWSMqWzta4MfMrRktbLNkA@mail.gmail.com>
Message-ID: <CAOdDvNq9A2PsE9c4oW9XEPq8adVSDWSMqWzta4MfMrRktbLNkA@mail.gmail.com>
To: Patrick McManus <pmcmanus@mozilla.com>
Cc: Sara Dickinson <sara@sinodun.com>, Martin Thomson <martin.thomson@gmail.com>, DoH WG <doh@ietf.org>, Andrew Sullivan <ajs@anvilwalrusden.com>
Content-Type: multipart/alternative; boundary="00000000000072979d056d62e85b"
Archived-At: <https://mailarchive.ietf.org/arch/msg/doh/9E_wpy-qRPyAN_PSySIUUsOxhM8>
Subject: Re: [Doh] A question of trust (was Re: Draft -09 and WGLC #2)
X-BeenThere: doh@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: DNS Over HTTPS <doh.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/doh>, <mailto:doh-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/doh/>
List-Post: <mailto:doh@ietf.org>
List-Help: <mailto:doh-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/doh>, <mailto:doh-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 30 May 2018 02:14:21 -0000

I've proposed
https://github.com/dohwg/draft-ietf-doh-dns-over-https/pull/189

Mateusz, it also harmonizes with the security considerations a bit.

On Tue, May 29, 2018 at 9:22 PM, Patrick McManus <pmcmanus@mozilla.com>
wrote:

> Hi Sara,
>
> On Tue, May 29, 2018 at 5:27 AM, Sara Dickinson <sara@sinodun.com> wrote:
>
>>
>>
>> I much prefer the approach of just discussing configuration but I don’t
>> think this goes far enough in answering Andrews question or helping
>> implementors work out exactly what to to. So….
>>
>> What does ‘configuration’ cover?
>> - Just direct configuration e.g. via a client API or config file
>> - Or also dynamic configuration e.g. via DHCP, assuming a future option
>> for this (which raises the question of trust again….)?
>>
>> I support only specifying direct configuration in this document but
>> either way making it more explicit.
>>
>
> I would describe [in]direct (or not) as one aspect of discovery, and the
> working group has chosen to stay away from discovery in this document.
>
> OTOH as I understand it discovery is the core topic of the DRIU bof, and
> is also on topic for this WG in a different document should someone propose
> such a thing.
>
> DoH isn't trying to solve that problem with the text under discussion -
> its just trying to say that the server(s) need to be bootstrapped and not
> discovered via linking and pushing during unrelated HTTP activities. Using
> the word "untrusted" was a mistake because it indicated more than that.
>
> -Patrick
>
>
>
>
>
>
>
>