IETF Logo Mail Archive

Re: [hybi] Last Call: <draft-ietf-hybi-thewebsocketprotocol-10.txt> (The WebSocket protocol) to Proposed Standard

Mark Andrews <marka@isc.org> Fri, 22 July 2011 03:43 UTC

Return-Path: <marka@isc.org>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9047711E8079 for <ietf@ietfa.amsl.com>; Thu, 21 Jul 2011 20:43:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.607
X-Spam-Level:
X-Spam-Status: No, score=-2.607 tagged_above=-999 required=5 tests=[AWL=-0.008, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QoNagKn6ilCB for <ietf@ietfa.amsl.com>; Thu, 21 Jul 2011 20:43:46 -0700 (PDT)
Received: from mx.pao1.isc.org (mx.pao1.isc.org [IPv6:2001:4f8:0:2::2b]) by ietfa.amsl.com (Postfix) with ESMTP id B9B7811E808C for <ietf@ietf.org>; Thu, 21 Jul 2011 20:43:45 -0700 (PDT)
Received: from bikeshed.isc.org (bikeshed.isc.org [IPv6:2001:4f8:3:d::19]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (Client CN "bikeshed.isc.org", Issuer "ISC CA" (verified OK)) by mx.pao1.isc.org (Postfix) with ESMTPS id 96D30C942B; Fri, 22 Jul 2011 03:43:35 +0000 (UTC) (envelope-from marka@isc.org)
Received: from drugs.dv.isc.org (unknown [IPv6:2001:470:1f00:820:6233:4bff:fe01:7585]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by bikeshed.isc.org (Postfix) with ESMTPSA id F1C30216C7B; Fri, 22 Jul 2011 03:43:34 +0000 (UTC) (envelope-from marka@isc.org)
Received: from drugs.dv.isc.org (localhost [127.0.0.1]) by drugs.dv.isc.org (Postfix) with ESMTP id 8CD841212A79; Fri, 22 Jul 2011 13:43:32 +1000 (EST)
To: Keith Moore <moore@network-heretics.com>
From: Mark Andrews <marka@isc.org>
References: <20110711140229.17432.23519.idtracker@ietfa.amsl.com> <CALiegfk0zVVRBbOP4ugsVXKmcLnryujP6DZqF6Bu_dC2C3PpeQ@mail.gmail.com> <9031.1311082001.631622@puncture> <CALiegfk_GLAhAf=yEe6hYw2bwtxEwg9aJN+f0Bm9he5QgsRavA@mail.gmail.com> <CAP992=Ft6NwG+rbcuWUP0npwVNHY_znHmXmznBQO_krMo3RT6g@mail.gmail.com> <CALiegfmTWMP3GhS1-k2aoHHXkUkB+eWqV=2+BufuWVR1s2Z-EA@mail.gmail.com> <20110721163910.GA16854@1wt.eu> <CAP992=FrX5VxP2o0JLNoJs8nXXba7wbZ6RN9wBUYC0ZSN_wbAg@mail.gmail.com> <9031.1311270000.588511@puncture> <4E28C035.6020009@necom830.hpcl.titech.ac.jp> <20110722021627.48D811211E54@drugs.dv.isc.org> <0DD53760-9B8A-4569-8C67-81421A8A24B6@network-heretics.com>
Subject: Re: [hybi] Last Call: <draft-ietf-hybi-thewebsocketprotocol-10.txt> (The WebSocket protocol) to Proposed Standard
In-reply-to: Your message of "Thu, 21 Jul 2011 23:17:39 -0400." <0DD53760-9B8A-4569-8C67-81421A8A24B6@network-heretics.com>
Date: Fri, 22 Jul 2011 13:43:32 +1000
Message-Id: <20110722034332.8CD841212A79@drugs.dv.isc.org>
Cc: ietf@ietf.org
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Jul 2011 03:43:46 -0000

In message <0DD53760-9B8A-4569-8C67-81421A8A24B6@network-heretics.com>, Keith M
oore writes:
> On Jul 21, 2011, at 10:16 PM, Mark Andrews wrote:
> 
> >=20
> > In message <4E28C035.6020009@necom830.hpcl.titech.ac.jp>, Masataka =
> Ohta writes:
> >> Dave Cridland wrote:
> >>=20
> >>> It's proven impossible, despite effort, to retrofit SRV onto HTTP;
> >>=20
> >> Where is a proof?
> >>=20
> >> 						Masataka Ohta
> >=20
> > Transitioning HTTP to use SRV is trivial even with proxies.
> >=20
> > Transitioning HTTPS to use SRV is complicated because of proxies.
> > There needs to be changes to how clients talk to proxies for HTTPS
> > + SRV to work through proxies.
> >=20
> > HTTP and HTTPS's use of the DNS is a abomination.  CNAME is totally
> > misused.  If you want to host a service on another machine you use
> > a record that indicates that.  You don't use a alias because aliases
> > mean so much more.
> >=20
> > Getting back to WS and SRV, WS needs to be SRV aware from day one
> > or it needs its own type in the DNS.  If you don't have SRV records
> > then you fallback to straight address records.
> 
> I'm fairly convinced that in the vast majority of cases, SRV is a bad =
> idea.  DNS is already too out of sync from hosts in many situations; SRV =
> just makes the situation worse.  Or to put it another way, if you want =
> to give every DNS admin the ability to impose fine-grained control over =
> what all of the hosts named by his DNS zones can do, deploy SRV =
> universally.  There are situations where this makes sense, but overall, =
> giving that level of control to DNS administrators is an extremely bad =
> idea.

What a load of FUD.  SRV records are no differnet to CNAME/MX records
in terms of control.  We don't shy away from adding MX records for
email or CNAME records for HTTP when CNAME is used a SRV equivalent.

Note even with SRV you have fallback to A/AAAA records when no SRV
record is present.

> That said, if this protocol is going to use SRV, it absolutely needs to =
> do it from day one.  There's no way to retro-fit SRV to most protocols =
> without breaking compatibility with existing implementations of those =
> protocols.
> 
> Keith
> 
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: marka@isc.org

v2.23.0 | Report a Bug | By Email