Re: [Doh] New: draft-livingood-doh-implementation-risks-issues

Stephane Bortzmeyer <> Tue, 12 March 2019 15:16 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id A0AFE131000 for <>; Tue, 12 Mar 2019 08:16:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -6.9
X-Spam-Status: No, score=-6.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id qImb3nKhaeLb for <>; Tue, 12 Mar 2019 08:16:41 -0700 (PDT)
Received: from ( [IPv6:2001:67c:2218:2::4:12]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 30C04130FC4 for <>; Tue, 12 Mar 2019 08:16:41 -0700 (PDT)
Received: from (localhost []) by (Postfix) with SMTP id 714F428011C; Tue, 12 Mar 2019 16:16:39 +0100 (CET)
Received: by (Postfix, from userid 500) id 6B47E28038C; Tue, 12 Mar 2019 16:16:39 +0100 (CET)
Received: from ( [IPv6:2001:67c:2218:15::11]) by (Postfix) with ESMTP id 631DA28011C; Tue, 12 Mar 2019 16:16:39 +0100 (CET)
Received: from ( [IPv6:2001:67c:1348:7::86:133]) by (Postfix) with ESMTP id 5CC50663E080; Tue, 12 Mar 2019 16:16:39 +0100 (CET)
Received: by (Postfix, from userid 1000) id 5542640235; Tue, 12 Mar 2019 16:16:39 +0100 (CET)
Date: Tue, 12 Mar 2019 16:16:39 +0100
From: Stephane Bortzmeyer <>
To: "Livingood, Jason" <>
Cc: Stephane Bortzmeyer <>, DoH WG <>
Message-ID: <>
References: <> <> <>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <>
X-Operating-System: Debian GNU/Linux 9.8
X-Kernel: Linux 4.9.0-8-amd64 x86_64
X-Charlie: Je suis Charlie
Organization: NIC France
User-Agent: NeoMutt/20170113 (1.7.2)
X-Bogosity: No, tests=bogofilter, spamicity=0.107364, version=1.2.2
X-PMX-Version:, Antispam-Engine:, Antispam-Data: 2019.3.12.150616
Archived-At: <>
Subject: Re: [Doh] New: draft-livingood-doh-implementation-risks-issues
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: DNS Over HTTPS <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Tue, 12 Mar 2019 15:16:42 -0000

On Mon, Mar 11, 2019 at 01:49:31AM +0000,
 Livingood, Jason <> wrote 
 a message of 64 lines which said:

> But I certainly think you can concede generally speaking that
> networks (of all types) strive to maximize performance &
> reliability, and this usually includes good DNS services.

I certainly hope it is the case. But not all the things I hope for

>  >  > Loss of Parental Controls or other Content Controls

> Many people have young children and may want to filter what content
> they have access to at home.

And some have children and never deployed any sort of technical
parental control. (Or not using the DNS.)

It seems to me there is a more profound issue here: should we (the
IETF), when creating new protocols, ensure that *all* previous usages
continue to work? Even if we never condoned them?

Replying Yes to this question would put a severe burden on IETF
shoulders; there are so many "creative" uses of the TCP/IP
technologies that it is impossible to guarantee that everything will
continue to work as before. Creating new protocols or new variants of
old protocols will certainly disrupt things. Is it always bad? I don't
think so.