Re: [Gen-art] Gen-ART and OPS-Dir review of draft-ietf-dnsop-dns-terminology-03
"Black, David" <david.black@emc.com> Tue, 11 August 2015 13:28 UTC
Return-Path: <david.black@emc.com>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F15A11A8A67; Tue, 11 Aug 2015 06:28:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.311
X-Spam-Level:
X-Spam-Status: No, score=-4.311 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vrRUBTOFHV49; Tue, 11 Aug 2015 06:28:27 -0700 (PDT)
Received: from mailuogwhop.emc.com (mailuogwhop.emc.com [168.159.213.141]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 59CE71A8A68; Tue, 11 Aug 2015 06:28:27 -0700 (PDT)
Received: from maildlpprd02.lss.emc.com (maildlpprd02.lss.emc.com [10.253.24.34]) by mailuogwprd02.lss.emc.com (Sentrion-MTA-4.3.1/Sentrion-MTA-4.3.0) with ESMTP id t7BDSOY8000695 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Tue, 11 Aug 2015 09:28:25 -0400
X-DKIM: OpenDKIM Filter v2.4.3 mailuogwprd02.lss.emc.com t7BDSOY8000695
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=emc.com; s=jan2013; t=1439299706; bh=g9lbVzikyNHrzk9/QikwvH4LpOs=; h=From:To:CC:Subject:Date:Message-ID:References:In-Reply-To: Content-Type:Content-Transfer-Encoding:MIME-Version; b=leOl075QhgU7u4uozxkTGXpZ5OlpdPg0K8nNqHtRteIXlw00PkgnmeeKHGgjXLN6m bATyF97gmQ2yl4LTHFETcpTp5clf9ByLxHSaDvJOR3vaXg47LvNSzMAiN8jqN3K9md p+BAK5YtvEKoEM0ICiB3SNWb8Ux7sePzIkyQoM0E=
X-DKIM: OpenDKIM Filter v2.4.3 mailuogwprd02.lss.emc.com t7BDSOY8000695
Received: from mailusrhubprd03.lss.emc.com (mailusrhubprd03.lss.emc.com [10.253.24.21]) by maildlpprd02.lss.emc.com (RSA Interceptor); Tue, 11 Aug 2015 09:27:31 -0400
Received: from mxhub23.corp.emc.com (mxhub23.corp.emc.com [128.222.70.135]) by mailusrhubprd03.lss.emc.com (Sentrion-MTA-4.3.1/Sentrion-MTA-4.3.0) with ESMTP id t7BDSDjH004843 (version=TLSv1 cipher=AES128-SHA bits=128 verify=FAIL); Tue, 11 Aug 2015 09:28:13 -0400
Received: from MXHUB101.corp.emc.com (10.253.50.15) by mxhub23.corp.emc.com (128.222.70.135) with Microsoft SMTP Server (TLS) id 8.3.327.1; Tue, 11 Aug 2015 09:28:12 -0400
Received: from MX104CL02.corp.emc.com ([169.254.8.86]) by MXHUB101.corp.emc.com ([::1]) with mapi id 14.03.0224.002; Tue, 11 Aug 2015 09:28:11 -0400
From: "Black, David" <david.black@emc.com>
To: Paul Hoffman <paul.hoffman@vpnc.org>
Thread-Topic: Gen-ART and OPS-Dir review of draft-ietf-dnsop-dns-terminology-03
Thread-Index: AdDTyedPOEIptEXES5yrruWJh9rfVQAL8CKAAA+yevA=
Date: Tue, 11 Aug 2015 13:28:11 +0000
Message-ID: <CE03DB3D7B45C245BCA0D2432779493614064DE7@MX104CL02.corp.emc.com>
References: <CE03DB3D7B45C245BCA0D24327794936140646FA@MX104CL02.corp.emc.com> <E10D2028-11D6-431C-B031-455FC769CACA@vpnc.org>
In-Reply-To: <E10D2028-11D6-431C-B031-455FC769CACA@vpnc.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.238.45.72]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Sentrion-Hostname: mailusrhubprd03.lss.emc.com
X-RSA-Classifications: public
Archived-At: <http://mailarchive.ietf.org/arch/msg/gen-art/t19o083J0zANl0skqAKcPdoEsT8>
Cc: "dnsop@ietf.org" <dnsop@ietf.org>, "General Area Review Team (gen-art@ietf.org)" <gen-art@ietf.org>, "ops-dir@ietf.org" <ops-dir@ietf.org>, "ietf@ietf.org" <ietf@ietf.org>
Subject: Re: [Gen-art] Gen-ART and OPS-Dir review of draft-ietf-dnsop-dns-terminology-03
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Aug 2015 13:28:30 -0000
Paul, Thanks for the prompt and comprehensive response. One quick follow-up: > > [B] 2. Names - p.4 > > > > Label: The identifier of an individual node in the sequence of nodes > > that comprise a fully-qualified domain name. > > > > Unless I've missed something fundamental, please change: > > "sequence of nodes" -> "sequence of identifiers" > > You may have missed something fundamental, or just parsed the sentence > wrong. The individual node is truly in a sequence of nodes. Ok, but the defined term is "label" not "node". In other words, I would have expected the fully-qualified domain name to be a sequence of labels, each of which is an identifier that identifies a node, making a fully qualified domain name a "sequence of identifiers", not a "sequence of nodes". Of course the "sequence of identifiers" in an FQDN identifies a "sequence of nodes". Everything else in the response looks reasonable to me. Thanks, --David > -----Original Message----- > From: Paul Hoffman [mailto:paul.hoffman@vpnc.org] > Sent: Monday, August 10, 2015 9:51 PM > To: Black, David > Cc: General Area Review Team (gen-art@ietf.org); ops-dir@ietf.org; > dnsop@ietf.org; ietf@ietf.org > Subject: Re: Gen-ART and OPS-Dir review of draft-ietf-dnsop-dns-terminology-03 > > Thank you for the careful review! Comments below, in an shortened form. > > On 10 Aug 2015, at 17:09, Black, David wrote: > > > Major Issues: > > > > [BCP] Is BCP status appropriate for this draft? > > Based on earlier comments, we have chosen to change this to > Informational for the next draft. > > > [DownRef] idnits 2.13.02 found a number of obsolete references and > > downrefs. > > > > These are all probably ok, given the historical retrospective nature > > of this > > draft, but the authors should double-check them: > > > > ** Obsolete normative reference: RFC 882 (Obsoleted by RFC 1034, RFC > > 1035) > > > > ** Obsolete normative reference: RFC 1206 (Obsoleted by RFC 1325) > > > > ** Downref: Normative reference to an Informational RFC: RFC 6561 > > > > ** Downref: Normative reference to an Informational RFC: RFC 6781 > > > > ** Downref: Normative reference to an Informational RFC: RFC 6841 > > > > ** Downref: Normative reference to an Informational RFC: RFC 7344 > > > > I've tagged this as a major issue solely because I believe that > > Downrefs are > > supposed to be explicitly noted in the IETF Last Call announcement, > > and that > > does not appear to have occurred in this case. > > We did look carefully at all of these. When we do a -bis of this > document (which is intended to be BCP), maybe the chairs and AD will > remember the explicit notice in the IETF Last Call announcement. Or > maybe there will be a tool that looks for this before IETF Last Call > announcements can be made... > > > Minor Issues: > > > > [A] Introduction - p.3 > > > > In this document, where the consensus definition is the same as the > > one in an RFC, that RFC is quoted. Where the consensus definition > > has changed somewhat, the RFC is mentioned but the new stand-alone > > definition is given. > > > > Should any RFCs be formally Updated when the latter sentence applies, > > or > > are any such actions being deliberately deferred to the revision of > > this > > document promised in the fourth paragraph of its Introduction? If the > > latter, please add a sentence to say so. > > As we said earlier, we intend to have this be Informational, with the > -bis document being BCP and updating older RFCs as appropriate. That > will be much harder than the current work. > > > > > [B] 2. Names - p.4 > > > > Label: The identifier of an individual node in the sequence of nodes > > that comprise a fully-qualified domain name. > > > > Unless I've missed something fundamental, please change: > > "sequence of nodes" -> "sequence of identifiers" > > You may have missed something fundamental, or just parsed the sentence > wrong. The individual node is truly in a sequence of nodes. > > > > > [C] 2. Names - p.5, end of Public suffix definition: > > > > One example of the difficulty of calling a domain a > > public suffix is that designation can change over time as the > > registration policy for the zone changes, such as the case of the > > .uk zone around the time this document is published. > > > > That calls for either an explanation or citation of a reference where > > further info can be found on this situation. This seems editorial, > > but > > RFCs are archival documents, and this sentence is likely to be lost on > > readers in some future decade. > > We are adding more in the next draft, as well as changing the example. > > > > > [D] 8. General DNSSEC - p.16 > > > > DNSSEC-aware and DNSSEC-unaware: Section 2 of [RFC4033] defines many > > types of resolvers and validators, including "non-validating > > security-aware stub resolver", "non-validating stub resolver", > > "security-aware name server", "security-aware recursive name > > server", "security-aware resolver", "security-aware stub > > resolver", and "security-oblivious 'anything'". (Note that the > > term "validating resolver", which is used in some places in those > > documents, is nevertheless not defined in that section.) > > > > That doesn't seem to actually define anything. > > What do those two terms mean? > > Those terms are defined in RFC 4033, and that definition is not repeated > here because it happens over a few sections. > > > Nits/editorial comments: > > > > Introduction - p.3 > > > > Note that there is no single consistent definition of "the DNS". It > > can be considered to be some combination of the following: a > > commonly-used naming scheme for objects on the Internet; a database > > representing the names and certain properties of these objects; an > > architecture providing distributed maintenance, resilience, and loose > > coherency for this database; and a simple query-response protocol (as > > mentioned below) implementing this architecture. > > > > "a database representing" -> "a distributed database representing" > > Good, yes. > > > > > 2. Names - p.5 > > > > Public suffix: A domain under which subdomains can be registered, > > and on which HTTP cookies ([RFC6265]) should not be set. There is > > no indication in a domain name whether or not it is a public > > suffix; that can only be determined by outside means. The IETF > > DBOUND Working Group [DBOUND] deals with issues with public > > suffixes. > > > > RFCs are archival documents - please rephrase so that this text does > > not assert the perpetual existence of the DBOUND WG - inserting > > "At the time of publication of this document" before the start of > > the final sentence above and "deals" -> "was dealing" should suffice. > > Good catch, yes. > > > 3. DNS Header and Response Codes - p.5 > > > > Many of the fields > > and flags in the header diagram in section 4.1.1 of [RFC1035] are > > referred to by their names in that diagram. For example, the > > response codes are called "RCODEs", the data for a record is called > > the "RDATA", and the authoritative answer bit is often called "the AA > > flag" or "the AA bit". > > > > This reference is actually to the diagrams in sections 4.1.1-4.1.3, > > e.g., > > "RDATA" is in section 4.1.3 . > > Yep. > > > > > 4. Resource Records - p.6 > > > > RR: A short form for resource record. > > > > Please add "(acronym)" after "short form" to make it clear that the > > term is shorter, not the record. > > Sure. > > > > > 5. DNS Servers - p.8 > > > > This section defines the terms used for the systems that act as DNS > > clients, DNS servers, or both. > > > > Should this section be titled "DNS Servers and Clients"? > > It started out as just "Servers", but then transmorgified. Fixed. > > > > > p.9: > > > > Authoritative-only server: A name server which only serves > > > > "which" -> "that" > > Indeed. > > > > > p.10: > > > > Zone transfer: The act of a client requesting a copy of a zone and > > an authoritative server sending the needed information. > > > > Please add a forward reference to Section 6 for the definition of > > "zone". > > Sure. > > > > > 6. Zones - p.14 > > > > Authoritative data: All of the RRs attached to all of the nodes from > > the top node of the zone down to leaf nodes or nodes above cuts > > around the bottom edge of the zone. > > > > "top node" -> "apex" > > Nope, not gonna change the direct quote from RFC 1034. > > > > > 8. General DNSSEC - p.17 > > > > NSEC3: Like the NSEC record, the NSEC3 record also provides > > authenticated denial of existence; however, NSEC3 records > > mitigates against zone enumeration and support Opt-Out. > > > > "mitigates" -> "mitigate" > > Yes > > > > > idnits 2.13.02 thinks RFC 2119 boilerplate needs to be added: > > > > ** The document seems to lack a both a reference to RFC 2119 and the > > recommended RFC 2119 boilerplate, even if it appears to use RFC 2119 > > keywords. > > > > RFC 2119 keyword, line 774: '... the resolver SHOULD treat the > > chil...' > > > > Adding that boilerplate is probably a good idea, even though the > > "SHOULD" > > is in text quoted from RFC 4035. > > Disagree. The excepted quotes require you to read the referenced RFCs, > which call in 2119 as appropriate. > > > --- Selected RFC 5706 Appendix A Q&A for OPS-Dir review --- > > > > RFC 5706 Appendix A is generally inapplicable to this draft, as this > > draft > > is primarily a set of definitions that have no operational impact on > > their > > own, let alone a need for management protocol support. > > > > Clarity of terms improves the foundation for operation of the > > Internet, > > and in that regard, this is a generally worthy document that should be > > published. > > We sure hope so. > > Thanks again for the review! You will see the above changes in the next > draft. > > --Paul Hoffman
- [Gen-art] Gen-ART and OPS-Dir review of draft-iet… Black, David
- Re: [Gen-art] Gen-ART and OPS-Dir review of draft… Paul Hoffman
- Re: [Gen-art] Gen-ART and OPS-Dir review of draft… Black, David
- Re: [Gen-art] [DNSOP] Gen-ART and OPS-Dir review … Andrew Sullivan
- Re: [Gen-art] [DNSOP] Gen-ART and OPS-Dir review … Black, David