Re: dane-openpgp 2nd LC resolution

Doug Barton <> Sat, 12 March 2016 20:15 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 6CF3C12D6C2 for <>; Sat, 12 Mar 2016 12:15:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -2.003
X-Spam-Status: No, score=-2.003 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RP_MATCHES_RCVD=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id leRJVg9H4Sr3 for <>; Sat, 12 Mar 2016 12:15:54 -0800 (PST)
Received: from ( []) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 6A4B312D691 for <>; Sat, 12 Mar 2016 12:15:54 -0800 (PST)
Received: from [] ( []) by (Postfix) with ESMTPSA id BA34D3A0BD for <>; Sat, 12 Mar 2016 20:15:52 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple;; s=dkim; t=1457813753; bh=b5nUMq/SmuFRGWbjuGXt/G5y+TRnMMSKsCCjfcTNcQc=; h=Subject:To:References:From:Date:In-Reply-To; b=OPnNyRdViIMTXEtXn9ajAiHM3BoBLVsoH++T44ysBGfrqwzVB+oTPC3QpbJWoijjk ETFVbYBAG7CgQSmfNrQ7yg1jY1jPtvdHSrZxHRICIGAmHg4MQlu+3Jc4uHJl5RKU6I QRdoZ+USPEWuTGJLzodyuMowE2mG/sZyqhOVNBmM=
Subject: Re: dane-openpgp 2nd LC resolution
References: <> <>
From: Doug Barton <>
Openpgp: id=E3520E149D053533C33A67DB5CC686F11A1ABC84
Message-ID: <>
Date: Sat, 12 Mar 2016 12:15:51 -0800
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.6.0
MIME-Version: 1.0
In-Reply-To: <>
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 7bit
Archived-At: <>
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF-Discussion <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Sat, 12 Mar 2016 20:15:56 -0000

On 03/12/2016 01:00 AM, John C Klensin wrote:
> The IETF should not be encouraging experiments on the public
> Internet that could be harmful to the Internet or to existing
> deployed applications, especially standards-track ones.  Several
> people with significant email operational experience have made
> the claim that this experiment could be harmful to the
> Internet's email infrastructure, if only by encouraging a
> violation of a fairly explicit (and very important, IMO)
> provision of SMTP.  As far as I can tell from reviewing the
> discussions, there has not even been effort to refute those
> claims or explain why they are not relevant.

Has anyone laid out the perceived dangers in an easily digestible 
format? I would be interested to see that discussion.

Given that the DNS RR in question is something the end user has to 
explicitly request, the danger is not immediately obvious to me.