Re: [Doh] [Ext] Associating a DoH server with a resolver

Jim Reid <jim@rfc1035.com> Thu, 25 October 2018 11:38 UTC

Return-Path: <jim@rfc1035.com>
X-Original-To: doh@ietfa.amsl.com
Delivered-To: doh@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4EF14130E37 for <doh@ietfa.amsl.com>; Thu, 25 Oct 2018 04:38:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2AIzAx-6n4AE for <doh@ietfa.amsl.com>; Thu, 25 Oct 2018 04:38:22 -0700 (PDT)
Received: from shaun.rfc1035.com (smtp.v6.rfc1035.com [IPv6:2001:4b10:100:7::25]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E43AE1286E3 for <doh@ietf.org>; Thu, 25 Oct 2018 04:38:21 -0700 (PDT)
Received: from gromit.rfc1035.com (gromit.rfc1035.com [195.54.233.69]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by shaun.rfc1035.com (Postfix) with ESMTPSA id EBE432420FD8; Thu, 25 Oct 2018 11:38:17 +0000 (UTC)
Content-Type: text/plain; charset=utf-8
Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\))
From: Jim Reid <jim@rfc1035.com>
In-Reply-To: <alpine.DEB.2.20.1810241222310.24450@grey.csi.cam.ac.uk>
Date: Thu, 25 Oct 2018 12:38:17 +0100
Cc: DoH WG <doh@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <0603C647-35EB-44BB-A221-420DDE817ABA@rfc1035.com>
References: <02C39DFD-9550-447D-B00E-702B441A88BE@icann.org> <CABkgnnV2YMtcdOyMfE2NMH4L1ZbK4dcp1KQt3FttCfz-nfQd6A@mail.gmail.com> <CABkgnnVnyCg==75P2A_kLgtTGq2Wwdkw-930o1YEMT53PhpqCA@mail.gmail.com> <67726F45-C947-48ED-B6ED-ABE2BD547AB1@icann.org> <alpine.DEB.2.20.1810241222310.24450@grey.csi.cam.ac.uk>
To: Tony Finch <dot@dotat.at>
X-Mailer: Apple Mail (2.3445.9.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/doh/fei-7rTaDGbJiFbIN-m9diblhOM>
Subject: Re: [Doh] [Ext] Associating a DoH server with a resolver
X-BeenThere: doh@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: DNS Over HTTPS <doh.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/doh>, <mailto:doh-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/doh/>
List-Post: <mailto:doh@ietf.org>
List-Help: <mailto:doh-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/doh>, <mailto:doh-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Oct 2018 11:38:23 -0000

On 24 Oct 2018, at 12:24, Tony Finch <dot@dotat.at> wrote:
> 
> Both of our CAs will not give us iPAddress certificates.

I’m fairly sure there’s an RIR based not a million miles away from Amsterdam who would be delighted to issue with certificates for your IP addresses.