IETF Logo Mail Archive

Re: [Doh] panel discussion on DoH/DoC

Eric Rescorla <ekr@rtfm.com> Mon, 11 February 2019 00:16 UTC

Return-Path: <ekr@rtfm.com>
X-Original-To: doh@ietfa.amsl.com
Delivered-To: doh@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3CD8B1295EC for <doh@ietfa.amsl.com>; Sun, 10 Feb 2019 16:16:53 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=rtfm-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id u_uYcz8Pniu0 for <doh@ietfa.amsl.com>; Sun, 10 Feb 2019 16:16:51 -0800 (PST)
Received: from mail-lj1-x233.google.com (mail-lj1-x233.google.com [IPv6:2a00:1450:4864:20::233]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 92009129284 for <doh@ietf.org>; Sun, 10 Feb 2019 16:16:50 -0800 (PST)
Received: by mail-lj1-x233.google.com with SMTP id r10-v6so7338300ljj.4 for <doh@ietf.org>; Sun, 10 Feb 2019 16:16:50 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rtfm-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=KaAx8tjnDFu7aA+m/fqCNCPwflniW+8/9ShTZKu0ORY=; b=zoijzi9gLOlHw14deDYXG1vmKyFqKgQ/MCb/allS6aPlN8NgfudE+TxmrgRH8k6u4Y QRkS9ZxpUkJk1LJtfc7+HKQhribzverFMTfJsqzjGevDEMVQK7RU73SS1ZN+7GWh1WfA uz4/4VYl+q8t/RAu5SrgMGbsxG0h3+k7y9cuxgiMLbvNztimLl/9bq2YE8KZJYP2LyOF VSTvoBq9T0PGmZoBhjGQM4bd+Jsnfry43ohEuyHmxIFXpGvGk6pwW5LCuphOYH4bOxNT b+ruH3n3mO88VHIJW30Sc5fEEIVcU+fKZ/eoQ+cw5R/bMSE39aXNtKoItRczMFQI4QZ4 A2ew==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=KaAx8tjnDFu7aA+m/fqCNCPwflniW+8/9ShTZKu0ORY=; b=K4NCtkbvxyUyrM02pqBywejraNrfTF/eieTxmgUnR+QPR/pBTSvbFSOdO6CJWzno3G nMuzM5k1S8M8l3qMOPatd/CEedv1Up8ho9RLbPmTU92CeqrkxaTsAGRGW19G3xKMdccW vcUttf3e3AJNQTkM1TBHMLjGsFndFJu7/Qqs+4htHk/uwKDGlz/JY86jmxE9QOBgTiwh YWgdZJL4C3klzA7gtZ/peXXrwWvYKXiaGZaVDHq0p3M11kWITb+RzYNiNY2fXNkdGSzm VFisFsqKzEkyrJfaRbAiJJT9ZVVdYj8v8elW2Zw4FUZQrSCKKpFAmiIE3dWn9QbSrbmo g4jg==
X-Gm-Message-State: AHQUAuZPGi+LE9xV3T3rKiJ7doCFoVSyasKj1Xep+KIiMX+gKrYVw/08 d+tI8GwWnnjtl+sasysJC+KrkzhHuCApVCYGOmW6Yg==
X-Google-Smtp-Source: AHgI3IZ/snetSkqU8podMJ87jv5yRmzlJFSB+NmnEYEq8PId14O2uDxnbHkLj7ZXzuqS7E2UFcTMQdObWdde17SXUzA=
X-Received: by 2002:a2e:810f:: with SMTP id d15-v6mr2633568ljg.86.1549844208715; Sun, 10 Feb 2019 16:16:48 -0800 (PST)
MIME-Version: 1.0
References: <20190207105106.GB1772@server.ds9a.nl> <C7C3BAF7-4BD4-4EE2-B3F2-1F8B49222980@fugue.com> <20190207130313.7g7hf4swaopnr75e@nic.fr> <FD7BFAFF-88B9-49BF-A652-3649ADCD53F9@fugue.com> <637C85D5-EACC-4C39-A220-753AC83FD78A@rfc1035.com> <35CBC108-69C9-4EB9-AACE-EEB39F802456@fugue.com> <1503183837.15474.1549549260349@appsuite.open-xchange.com> <97216205-8415-42F6-BF24-5FFB589FC887@rfc1035.com> <CABtrr-UfwtgmO80A9en0-4tyPKqRRdvwR3BVEQQv+ykrNt-=mg@mail.gmail.com> <f9a06c5d-7af2-46b1-5929-490c22c602bb@time-travellers.org> <CABtrr-WNfQ16FQWmtZFUoCDc1R3rua8zw8FCAr2JBNx4cLyaAA@mail.gmail.com> <1549842687.561412.1655109464.1F2DA0B4@webmail.messagingengine.com> <168d9e46ec8.278b.55b9c0b96417b0a70c4dcaded0d2e1c6@anvilwalrusden.com>
In-Reply-To: <168d9e46ec8.278b.55b9c0b96417b0a70c4dcaded0d2e1c6@anvilwalrusden.com>
From: Eric Rescorla <ekr@rtfm.com>
Date: Sun, 10 Feb 2019 16:16:10 -0800
Message-ID: <CABcZeBOXevwJne3uY0kMFk0b_w0Hx0e9qsHmBK61JdPd2hruBw@mail.gmail.com>
To: Andrew Sullivan <ajs@anvilwalrusden.com>
Cc: Martin Thomson <mt@lowentropy.net>, DoH WG <doh@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000084a21805819339dd"
Archived-At: <https://mailarchive.ietf.org/arch/msg/doh/G-h0yGHBiUYnTgAtUlAb6m0KoRQ>
Subject: Re: [Doh] panel discussion on DoH/DoC
X-BeenThere: doh@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: DNS Over HTTPS <doh.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/doh>, <mailto:doh-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/doh/>
List-Post: <mailto:doh@ietf.org>
List-Help: <mailto:doh-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/doh>, <mailto:doh-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Feb 2019 00:16:53 -0000

n Sun, Feb 10, 2019 at 4:11 PM Andrew Sullivan <ajs@anvilwalrusden.com>
wrote:

> Also, what do you mean exactly by "picking one server"?  The back end
> state
> surely (!?) won't be shared and there's no reason to suppose names or
> numbers get you to "the same" thing. So ...?
>

The general idea would be to have a list of DoH servers (operators, not
machines) and then to randomly select one for each client. We haven't
decided to do this, so also haven't decided on how we'd implement it :)

-Ekr


> A
> --
> Andrew Sullivan
> Please excuse my clumbsy thums.
>
> On February 10, 2019 18:51:37 Martin Thomson <mt@lowentropy.net> wrote:
>
> > On Sat, Feb 9, 2019, at 08:19, Joseph Lorenzo Hall wrote:
> >> Those are great points and I may have taken some liberty with the the
> >> "multiplexing across many DOH providers" statement as I'm not really
> sure
> >> what browsers want to do, it just seems like having one or a few
> options is
> >> not ideal. Anyway, I recognize that the work I'm interested in is not
> >> protocol work (as far as I can tell), so I'll stop bugging folks here!
> >
> > I don't think that this is entirely crazy.  I agree with Shane that
> trying
> > to load balance between servers or randomly route to servers is likely
> to
> > be worse than just picking one, but one option we've considered is
> picking
> > one server randomly and using that consistently thereafter.  (Cue all
> the
> > second-order questions regarding how to use that for tracking, etc...)
> >
> > There is also talk of finding ways to route requests to servers that
> might
> > own the same name, but that's far more risky.  In other words, this is
> not
> > a decided matter because it is so clearly not simple.
> >
> > _______________________________________________
> > Doh mailing list
> > Doh@ietf.org
> > https://www.ietf.org/mailman/listinfo/doh
>
>
>
> _______________________________________________
> Doh mailing list
> Doh@ietf.org
> https://www.ietf.org/mailman/listinfo/doh
>

v2.23.0 | Report a Bug | By Email