IETF Logo Mail Archive

Re: uncooperative DNSBLs, was several messages

Andrew Sullivan <ajs@shinkuro.com> Thu, 13 November 2008 16:38 UTC

Return-Path: <ietf-bounces@ietf.org>
X-Original-To: ietf-archive@megatron.ietf.org
Delivered-To: ietfarch-ietf-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id AB20B3A67C1; Thu, 13 Nov 2008 08:38:37 -0800 (PST)
X-Original-To: ietf@core3.amsl.com
Delivered-To: ietf@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 6B52F3A6965 for <ietf@core3.amsl.com>; Thu, 13 Nov 2008 08:38:36 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.842
X-Spam-Level:
X-Spam-Status: No, score=-1.842 tagged_above=-999 required=5 tests=[AWL=0.757, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xx2IUNcHOn2t for <ietf@core3.amsl.com>; Thu, 13 Nov 2008 08:38:35 -0800 (PST)
Received: from mail.yitter.info (mail.yitter.info [208.86.224.201]) by core3.amsl.com (Postfix) with ESMTP id 9A9533A67AC for <ietf@ietf.org>; Thu, 13 Nov 2008 08:38:35 -0800 (PST)
Received: from crankycanuck.ca (CPE001b63afe888-CM001adea9c5a6.cpe.net.cable.rogers.com [99.236.211.160]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.yitter.info (Postfix) with ESMTPSA id 1C2402FE9555 for <ietf@ietf.org>; Thu, 13 Nov 2008 16:38:35 +0000 (UTC)
Date: Thu, 13 Nov 2008 11:38:33 -0500
From: Andrew Sullivan <ajs@shinkuro.com>
To: ietf@ietf.org
Subject: Re: uncooperative DNSBLs, was several messages
Message-ID: <20081113163833.GN76118@shinkuro.com>
References: <Pine.LNX.4.33.0811121942450.12067-100000@egate.xpasc.com> <20081113112302.38928.qmail@simone.iecc.com> <e0c581530811130740g1db5cbfehbcdad361660bf48b@mail.gmail.com> <491C5339.8090801@dcrocker.net>
MIME-Version: 1.0
Content-Disposition: inline
In-Reply-To: <491C5339.8090801@dcrocker.net>
User-Agent: Mutt/1.5.18 (2008-05-17)
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: ietf-bounces@ietf.org
Errors-To: ietf-bounces@ietf.org

On Thu, Nov 13, 2008 at 08:18:01AM -0800, Dave CROCKER wrote:
> The difficulty is that the current line of argument is that because some 
> DNSBLs are operated badly, DNSBLs are bad.

I think that's not quite fair.  My impression is that there is more
than one line of argument.  Here are some different ones that I have
observed in this discussion, some of which seem never to be getting
answers.  (Or, sometimes, they seem to be getting answers that are
counter-arguments the the first.  I believe philosophers would call
those examples of the straw person fallacy.)

1.  Some DNSBLs are bad, therefore all DNSBLs are bad.  (The one you
note, and which is obviously bogus.)

2.  DNSBLs are in themselves bad, because there is no way to guarantee
that they won't contain false positives; they are nevertheless
possibly useful, but the trade-offs are inadequeately described in the
current document.

3.  DNSBLs are not in themselves bad, but the implementation of them
as described in the current draft (which does describe the current
state of the art in DNSBLs) _is_ bad.  The current behaviour and the
desirable behaviour ought to be separated, and one described while the
other is standardized.

There are probably other positions I haven't covered here.

A

-- 
Andrew Sullivan
ajs@shinkuro.com
Shinkuro, Inc.
_______________________________________________
Ietf mailing list
Ietf@ietf.org
https://www.ietf.org/mailman/listinfo/ietf

v2.23.0 | Report a Bug | By Email