Re: [Gen-art] Genart last call review of draft-ietf-dnsop-7706bis-07
Ines Robles <mariainesrobles@googlemail.com> Mon, 02 March 2020 13:18 UTC
Return-Path: <mariainesrobles@googlemail.com>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6FEB93A0B82; Mon, 2 Mar 2020 05:18:42 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=googlemail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dCUqoqEdl-Md; Mon, 2 Mar 2020 05:18:40 -0800 (PST)
Received: from mail-vk1-xa35.google.com (mail-vk1-xa35.google.com [IPv6:2607:f8b0:4864:20::a35]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1B2533A0B4C; Mon, 2 Mar 2020 05:18:40 -0800 (PST)
Received: by mail-vk1-xa35.google.com with SMTP id i78so2930156vke.0; Mon, 02 Mar 2020 05:18:40 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=vaXkqWODrWnu283menHbJE0B+y/nj8B9DIGaDBk9nHc=; b=nUjgHt7W8Lj4/Wigk/iDolYPE8uRQAqXJp4UuCIpi8Dtp2Uvl+e1F07h93XD1rWK1N CrfvDup43ZyITp195EbnGMIyPaBZEydY0coApizZX+F9jkzZ2zktXHjjOaNBazi5+nnM ukPEoLSChjblnR27LBa6f9IUPGdmr3m3fVRKdxJOrquh+lgGRvs0nuUePQ06WTO/og5m qKdFpZP8pSWmVcTRK9D4F0ybopF/Yfpb+HbHvj8hh4b7k7CASa41g1+OP2UCJGPEYTwR jFU7VnWv0HLoTWPdP0mOHMemB+1cUSiimko1c07pM5eRE9XXmeyjHzd8Rs5/WXPShyoW /DVQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=vaXkqWODrWnu283menHbJE0B+y/nj8B9DIGaDBk9nHc=; b=eWV/bwwxL57GCeUasJGEiaubXdSaSycmzFB9ejYAULPWMoL4BbzHpPw5kbr4U+Q8Q5 COnBwS7DNQ7+CCRwq2g8YuY9bE/Y6kMciF4SACXaTCf+P2hPeyXuB5jllsNc4v9SakYb NuuQXRSFgA/C+El2FfzkYZ85yuI11GMfj0UKipMCAJYxtnW6oefb4xQeBZqyj4gaWaET NWX9oqlqYRL5V4StZ8eHQucbEWhQvOyxwSeE4X3A36rcUrD7CTrZNmehi5z8SdXgPOdg qKN5ZUqionbzIOuhTNPMWXJ9U29KDiXw/7dgK8EkBL+Kn62QZ8psf0s0gPB52tJulHXA Kn5g==
X-Gm-Message-State: ANhLgQ0CAAauqxOP53CXJAZPkZ3BAkZy9c0q3flbKhrGBoHbq14w/KLJ lJOyMu/9TCqtl7xIy7iaef/ewxYDwNt+Ze5bEyUHcglx
X-Google-Smtp-Source: ADFU+vs+n7dVu/IfVxTyOQUSCcm5lrSic7B31p0eqZqZVrPKV7/+Nd5BP+AQRsVYirfME0/YgyP+pJD4ci34JXLmO2I=
X-Received: by 2002:ac5:c54b:: with SMTP id d11mr290031vkl.49.1583155119057; Mon, 02 Mar 2020 05:18:39 -0800 (PST)
MIME-Version: 1.0
References: <158289497136.22402.1744188467383478436@ietfa.amsl.com> <CAHw9_iKcSiVWdkGr_RYq=OfXuRb=x7aMTFiVi4gG_Sx1oqp5Mw@mail.gmail.com>
In-Reply-To: <CAHw9_iKcSiVWdkGr_RYq=OfXuRb=x7aMTFiVi4gG_Sx1oqp5Mw@mail.gmail.com>
From: Ines Robles <mariainesrobles@googlemail.com>
Date: Mon, 02 Mar 2020 15:18:02 +0200
Message-ID: <CAP+sJUcZUsRkYkErQUzY0S31ZLqWeu18KUcCTjV-BqbD2w-78w@mail.gmail.com>
To: Warren Kumari <warren@kumari.net>
Cc: General Area Review Team <gen-art@ietf.org>, last-call@ietf.org, dnsop <dnsop@ietf.org>, draft-ietf-dnsop-7706bis.all@ietf.org
Content-Type: multipart/alternative; boundary="0000000000007eed19059fdf0694"
Archived-At: <https://mailarchive.ietf.org/arch/msg/gen-art/tzHIN6WaYxRMVgKRZkpVQs5qHfY>
Subject: Re: [Gen-art] Genart last call review of draft-ietf-dnsop-7706bis-07
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Mar 2020 13:18:45 -0000
Hi Warren, Thank you very much for your reply, Best wishes, Ines. On Fri, Feb 28, 2020 at 8:18 PM Warren Kumari <warren@kumari.net> wrote: > On Fri, Feb 28, 2020 at 8:02 AM Ines Robles via Datatracker > <noreply@ietf.org> wrote: > > > > Reviewer: Ines Robles > > Review result: Ready with Nits > > > > I am the assigned Gen-ART reviewer for this draft. The General Area > > Review Team (Gen-ART) reviews all IETF documents being processed > > by the IESG for the IETF Chair. Please treat these comments just > > like any other last call comments. > > > > For more information, please see the FAQ at > > > > <https://trac.ietf.org/trac/gen/wiki/GenArtfaq>. > > > > Document: draft-ietf-dnsop-7706bis-07 > > Reviewer: Ines Robles > > Review Date: 2020-02-28 > > IETF LC End Date: 2020-02-28 > > IESG Telechat date: Not scheduled for a telechat > > > > Summary: > > > > The document is well written, it supplies appendixes with examples. > > > > This document describes a method for the operator of a recursive > resolver to > > have a complete root zone locally, and to hide queries for the root zone > from > > outsiders, at the cost of adding some operational fragility for the > operator. > > > > I have some minor questions. > > > > Major issues: None > > > > Minor issues: None. > > > > Nits/editorial comments: > > > > Thank you for the review! > > > 1- Appendix B.5: it seems that the link is not valid: <https://knot- > > resolver.readthedocs.io/en/stable/modules.html#root-on-loopback-rfc- > > 7706> > > > > This link worked for me: > > https://knot-resolver.readthedocs.io/en/stable/modules-rfc7706.html. > > Thanks - not just for pointing out the issue, but also finding a > better version - as suggested, I am changing this (in a git branch > where I am collecting updates) to > https://knot-resolver.readthedocs.io/en/v5.0.1/modules-rfc7706.html - > I believe that stability is the most important attribute. AD, please > let us know if you disagree. > > > > > Questions: > > > > 1- It seems that this document replaces RFC7706, but the document states > that > > it updates RFC7706, is that correct? > > Oh, good point - once this is published, it does replace 7706 (it is a > bis, and contains all of the content from 7706), so Obsoletes is > better. > Thank you, changed. > > > > > 2- Abstract: "The cost of adding some operational fragility for the > operator", > > Does it introduce security considerations that have to be mentioned? > > > > 3- Section 1: "Research shows that the vast majority of queries going to > the > > root are for names that do not exist in the > > root zone." - Do you have some references to that research that can > be added > > to the draft? > > Hmmmm... I think that we missed this because, within the DNS community > this is sufficiently well known that we don't even think about / > question it. > There is quite a lot of research on this, but much if it is behind > paywalls - while almost 20 years old now (Gods, I feel old!), I think > that the best one to cite is still: > https://www.caida.org/publications/papers/2001/DNSMeasRoot/dmr.pdf ( > DNS Measurements at a Root Server ) -- I will add this. > > > > > 4- I would expand KSK to Key signing key (KSK). > > Thanks! Done! > > > > > 5- Should this draft add a reference to rfc8499? > > Seems like a good idea, thanks! I'm adding: > "Readers are expected to be familiar with <xref target="RFC8499"/>." > > > > > Thank you for this document, > > ... and thank you for the review. > > W > > > > > Ines. > > > > > > > -- > I don't think the execution is relevant when it was obviously a bad > idea in the first place. > This is like putting rabid weasels in your pants, and later expressing > regret at having chosen those particular rabid weasels and that pair > of pants. > ---maf >
- [Gen-art] Genart last call review of draft-ietf-d… Ines Robles via Datatracker
- Re: [Gen-art] Genart last call review of draft-ie… Barry Leiba
- Re: [Gen-art] Genart last call review of draft-ie… Warren Kumari
- Re: [Gen-art] Genart last call review of draft-ie… Barry Leiba
- Re: [Gen-art] Genart last call review of draft-ie… Ines Robles
- Re: [Gen-art] Genart last call review of draft-ie… Alissa Cooper