IETF Logo Mail Archive

Re: (short version) Re: Last Call: <draft-faltstrom-uri-10.txt> (The Uniform Resource Identifier (URI) DNS Resource Record) to Proposed Standard

Patrik Fältström <paf@frobbit.se> Fri, 27 February 2015 08:42 UTC

Return-Path: <paf@frobbit.se>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CC3111A9128 for <ietf@ietfa.amsl.com>; Fri, 27 Feb 2015 00:42:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.261
X-Spam-Level:
X-Spam-Status: No, score=-1.261 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_EQ_SE=0.35, MIME_8BIT_HEADER=0.3, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ae-WRTkcYOdj for <ietf@ietfa.amsl.com>; Fri, 27 Feb 2015 00:42:55 -0800 (PST)
Received: from mail.frobbit.se (mail.frobbit.se [IPv6:2a02:80:3ffe::176]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 36AE61A9126 for <ietf@ietf.org>; Fri, 27 Feb 2015 00:42:55 -0800 (PST)
Received: from [IPv6:2a02:80:3ffc::22] (unknown [IPv6:2a02:80:3ffc::22]) by mail.frobbit.se (Postfix) with ESMTPSA id C507C1FE80 for <ietf@ietf.org>; Fri, 27 Feb 2015 09:42:53 +0100 (CET)
Content-Type: multipart/signed; boundary="Apple-Mail=_3C583BBA-E37F-45C4-9AF4-FE488E961A11"; protocol="application/pgp-signature"; micalg="pgp-sha1"
Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2070.6\))
Subject: Re: (short version) Re: Last Call: <draft-faltstrom-uri-10.txt> (The Uniform Resource Identifier (URI) DNS Resource Record) to Proposed Standard
X-Pgp-Agent: GPGMail 2.5b5
From: Patrik Fältström <paf@frobbit.se>
In-Reply-To: <20150227075813.GT1260@mournblade.imrryr.org>
Date: Fri, 27 Feb 2015 09:41:42 +0100
Message-Id: <1279CB63-FBF5-4839-B685-4EE1C6B7FD3D@frobbit.se>
References: <20150223153757.GI1260@mournblade.imrryr.org> <20150223155241.GJ1260@mournblade.imrryr.org> <tsl8ufoh9ko.fsf@mit.edu> <2DF7230C-D1D8-4B21-9003-B336108A38CB@vpnc.org> <20150224172649.GX1260@mournblade.imrryr.org> <tslvbircj0d.fsf@mit.edu> <0325DF3F-17F3-4400-BDEA-EDB5334BF35C@frobbit.se> <20150225180227.GT1260@mournblade.imrryr.org> <tsla901akgu.fsf@mit.edu> <16ABF6B9-F113-4A1F-8816-EE041CCF4C4B@frobbit.se> <20150227075813.GT1260@mournblade.imrryr.org>
To: ietf@ietf.org
X-Mailer: Apple Mail (2.2070.6)
Archived-At: <http://mailarchive.ietf.org/arch/msg/ietf/_P9OO14xSjxIJUuzs12Uk8Pn6k8>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 27 Feb 2015 08:42:57 -0000

> On 27 Feb 2015, at 08:58, Viktor Dukhovni <ietf-dane@dukhovni.org> wrote:
> 
>> One then open an SMTP connection to mail.frobbit.se, and can use TLS where
>> the cert is compared to mail.frobbit.se.
> 
> Except that this is not done in MTAs written by people with clue,
> and is known to be insecure ("going through the motions").
> 
>> To me that is a change of a domain name given data in DNS.
> 
> That's the naive model, but it is wrong.

Ok, trust me, I know how SMTP and mail works :-)

So the difference for MX is that the MX model using TLS is wrong.

Then SRV, can you explain that?

http://example.com/

Lookup of SRV for _web._tcp.example.com

Get back for example 8080 example.net

http://example.net:8080/


What I am trying to understand is the _difference_ between URI and MX/SRV which was what Sam said there was.

   Patrik

v2.23.0 | Report a Bug | By Email