Re: last call discussion status on draft-iab-2870bis

Mark Andrews <marka@isc.org> Thu, 05 March 2015 22:03 UTC

Return-Path: <marka@isc.org>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5849E1A9085 for <ietf@ietfa.amsl.com>; Thu, 5 Mar 2015 14:03:35 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.911
X-Spam-Level:
X-Spam-Status: No, score=-6.911 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5q2MFU3UgN_V for <ietf@ietfa.amsl.com>; Thu, 5 Mar 2015 14:03:32 -0800 (PST)
Received: from mx.ams1.isc.org (mx.ams1.isc.org [199.6.1.65]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A29D01A907D for <ietf@ietf.org>; Thu, 5 Mar 2015 14:03:32 -0800 (PST)
Received: from zmx1.isc.org (zmx1.isc.org [149.20.0.20]) by mx.ams1.isc.org (Postfix) with ESMTP id 727B51FCC3C; Thu, 5 Mar 2015 22:03:29 +0000 (UTC)
Received: from zmx1.isc.org (localhost [127.0.0.1]) by zmx1.isc.org (Postfix) with ESMTP id 60110160067; Thu, 5 Mar 2015 22:10:29 +0000 (UTC)
Received: from rock.dv.isc.org (c122-106-252-81.belrs3.nsw.optusnet.com.au [122.106.252.81]) by zmx1.isc.org (Postfix) with ESMTPSA id 291C1160049; Thu, 5 Mar 2015 22:10:29 +0000 (UTC)
Received: from rock.dv.isc.org (localhost [IPv6:::1]) by rock.dv.isc.org (Postfix) with ESMTP id 5B3B42AF8AC8; Fri, 6 Mar 2015 09:03:28 +1100 (EST)
To: manning bill <bmanning@isi.edu>
From: Mark Andrews <marka@isc.org>
References: <20140520204238.21772.64347.idtracker@ietfa.amsl.com> <500031A0-DF45-409E-AACB-F79C32032E38@viagenie.ca> <4B545BEB-EA0E-4BA8-A45E-15AF12CDB1EC@piuha.net> <20150305044122.4185F2AEEC2D@rock.dv.isc.org> <EC564286-9A5E-4702-A8ED-B2C8E404E68A@piuha.net> <6056F80B-2188-4E52-AE18-35E84BA98147@vpnc.org> <D205D042-1285-46D5-B9A1-E732B23A8861@piuha.net> <D1E3F194-34AD-4968-8ACE-7E8D7990413B@isi.edu>
Subject: Re: last call discussion status on draft-iab-2870bis
In-reply-to: Your message of "Thu, 05 Mar 2015 09:00:04 -0800." <D1E3F194-34AD-4968-8ACE-7E8D7990413B@isi.edu>
Date: Fri, 06 Mar 2015 09:03:27 +1100
Message-Id: <20150305220328.5B3B42AF8AC8@rock.dv.isc.org>
Archived-At: <http://mailarchive.ietf.org/arch/msg/ietf/oc_dk-ExthdOlWUFwOMg9kh3BQE>
Cc: IAB <iab@iab.org>, Paul Hoffman <paul.hoffman@vpnc.org>, IETF Discussion List <ietf@ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 05 Mar 2015 22:03:35 -0000

In message <D1E3F194-34AD-4968-8ACE-7E8D7990413B@isi.edu>, manning bill writes:
> EDNS is essential for the implementation of DNS Security Extensions.
> All roots support DNSSEC.
> Calling out EDNS0 at this time is moot.

Actually there are implementations that do DNSSEC fine but botch
EDNS.  We have drafts coming through the IETF that expect full EDNS
version 0 compliance to work without having to do gross hacks like
dealing with incorrectly returned FORMERR, BADVERS and queries being
dropped because they happen to try to use a extension.

The current root servers get this right.  This is about preventing
things going wrong in the future.  It is also about TLDs and others
that use the root server requirements as a basis for their requirements.

Mark

> (I'll say that 2870bis is on thin ice, since the IETF/IAB have no
> leverage on root server operators.  This community can pontificate at
> length, but the actual operations will
> dictate, not some wish list from an "arms-length" standards body...
>   Just sayin')
>
> /bill
> PO Box 12317
> Marina del Rey, CA 90295
> 310.322.8102
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: marka@isc.org